RSS   Vulnerabilities for
'Yet another question & answer system'
   RSS

2012-08-13
 
CVE-2012-4257

CWE-200
 

 
Yaqas (Yet Another Question & Answer System) 1.0 Alpha 1 allows remote attackers to obtain sensitive information via an invalid character in the PHPSESSID, which reveals the installation path in an error message.

 


Copyright 2021, cxsecurity.com

 

Back to Top