Sensitive Information Disclosure in Vortex Portal via Invalid act Parameter

Sensitive Information Disclosure in Vortex Portal via Invalid act Parameter

CVE-2005-0880 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

content.php in Vortex Portal allows remote attackers to obtain sensitive information via an invalid act parameter, which leaks the full pathname in a PHP error message.

Learn more about our Web Application Penetration Testing UK.