RSS   Vulnerabilities for 'Server'   RSS

2011-09-23
 
CVE-2011-3825

CWE-200
 

 
Zend Framework 1.11.3 in Zend Server CE 5.1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by Validate.php and certain other files.

 

 >>> Vendor: ZEND 23 Products
Zend platform
Zend google data client library preview
Zend framework preview
Engine
Framework
Server
Zend server
Zend framework
Zendto
Zend openid
Zendopenid
Zendrest
Zendservice amazon
Zendservice api
Zendservice audioscrobbler
Zendservice nirvanix
Zendservice slideshare
Zendservice technorati
Zendservice windowsazure
Zend-cache
Zf-apigility-doctrine
Zend-mail
Diactoros


Copyright 2021, cxsecurity.com

 

Back to Top