CVE-2007-5128

CVE-2007-5128 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

SimpNews 2.41.03 on Windows, when PHP before 5.0.0 is used, allows remote attackers to obtain sensitive information via an certain link_date parameter to events.php, which reveals the path in an error message due to an unsupported argument type for the mktime function on Windows.

Learn more about our Web Application Penetration Testing UK.