Arbitrary Database Information Disclosure in Banana Dance B.2.6 and Earlier

Arbitrary Database Information Disclosure in Banana Dance B.2.6 and Earlier

CVE-2012-5243 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to read arbitrary database information via a crafted request.

Learn more about our Web Application Penetration Testing UK.