Vulnerabilities > CVE-2006-1680 - Unspecified vulnerability in Jupiter CMS Jupiter CMS 1.1.5
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Jupiter CMS 1.1.5, when display_errors is enabled, allows remote attackers to obtain the full server path via a direct request to modules/online.php.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://secunia.com/advisories/19582
- http://secunia.com/advisories/19582
- http://www.securityfocus.com/archive/1/430391/100/0/threaded
- http://www.securityfocus.com/archive/1/430391/100/0/threaded
- http://www.vupen.com/english/advisories/2006/1302
- http://www.vupen.com/english/advisories/2006/1302
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25703
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25703