Information Disclosure Vulnerability in mod.php of eNdonesia 8.3

Information Disclosure Vulnerability in mod.php of eNdonesia 8.3

CVE-2004-2671 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

mod.php in eNdonesia 8.3 allows remote attackers to obtain sensitive information via certain direct requests, and certain requests with invalid parameter values, which reveal the path in various error messages, as demonstrated by the (1) mod and (2) cid parameters.

Learn more about our Web Application Penetration Testing UK.