Vulnerabilities > CVE-2007-0490 - Information Disclosure vulnerability in Open-Realty 2.3.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
index.php in Open-Realty 2.3.4 allows remote attackers to obtain sensitive information (the full path) via an invalid listingID parameter in a listingview action.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |