RSS   Vulnerabilities for 'Digilibe'   RSS

2013-02-14
 
CVE-2013-1402

CWE-200
 

 
DigiLIBE 3.4 and possibly other versions sends a redirect but does not exit, which allows remote attackers to obtain sensitive configuration information via a direct request to configuration/general_configuration.html.

 


Copyright 2024, cxsecurity.com

 

Back to Top