Signature Detail
Short Name |
HTTP:PHP:EXOOPS-FD |
|---|---|
Severity |
Low |
Recommended |
No |
Category |
HTTP |
Keywords |
Exoops File disclosure |
Release Date |
2005/03/28 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Exoops File disclosure
This signature detects attempts to exploit a file disclosure vulnerability in the Exoops web system.
Extended Description
RunCMS is reportedly affected by an information disclosure vulnerability. This issue is due to a failure in the application to secure sensitive information. Exploitation of this vulnerability could lead to the disclosure of database configuration details, including the database name, user name and password. RunCMS was formerly named E-Xoops.
Affected Products
- E-Xoops 1.0.0 5r3
- RunCMS 1.1.0
References
- BugTraq: 12848
- CVE: CVE-2005-0828