CVE-2009-0678

CVE-2009-0678 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

images/captcha.php in RavenNuke 2.30 allows remote attackers to obtain sensitive information via an aFonts array parameter value that does not correspond to a valid font file, which reveals the installation path in an error message.

Learn more about our Web Application Penetration Testing UK.