Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-09-24 | CVE-2011-3780 | Information Exposure vulnerability in PHPicalendar PHP Icalendar 2.4 PHP iCalendar 2.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by rss/rss_common.php and certain other files. | 5.0 |
| 2011-09-24 | CVE-2011-3779 | Information Exposure vulnerability in Idevspot PHPhostbot 2.0 PhpHostBot 2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/create_acct.php and certain other files. | 5.0 |
| 2011-09-24 | CVE-2011-3778 | Information Exposure vulnerability in PHPgedview 4.2.3 PhpGedView 4.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by serviceClientTest.php and certain other files. | 5.0 |
| 2011-09-24 | CVE-2011-3777 | Information Exposure vulnerability in PHPfreechat 1.3 phpFreeChat 1.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/zilveer/style.css.php and certain other files. | 5.0 |
| 2011-09-24 | CVE-2011-3776 | Information Exposure vulnerability in Musawir ALI PHPformgenerator 2.09 phpFormGenerator 2.09 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by forms/process.php. | 5.0 |
| 2011-09-24 | CVE-2011-3775 | Information Exposure vulnerability in Litoweb PHPfilenavigator 2.3.3 PHPfileNavigator 2.3.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by xestion/varios/logs.inc.php and certain other files. | 5.0 |
| 2011-09-24 | CVE-2011-3774 | Information Exposure vulnerability in Bishop Bettini PHPesp 2.1.1 php Easy Survey Package (phpESP) 2.1.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by public/landing.php and certain other files. | 5.0 |
| 2011-09-24 | CVE-2011-3773 | Information Exposure vulnerability in PHPdevshell 3.0.0 PHPDevShell 3.0.0-Beta-4b allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by gzip.php. | 5.0 |
| 2011-09-24 | CVE-2011-3772 | Information Exposure vulnerability in PHP-Collab PHPcollab 2.5 phpCollab 2.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by topics/noti_newtopic.php and certain other files. | 5.0 |
| 2011-09-24 | CVE-2011-3771 | Information Exposure vulnerability in GNU PHPbook 2.1.0 phpBook 2.1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by doc/update_smilies_1.50-1.60.php and certain other files. | 5.0 |