CVE-2002-0445

2004-09-0104:00:00

mitre

www.cve.org

AI Score

6.7

Confidence

Low

EPSS

0.005

Percentile

76.4%

JSON

article.php in PHP FirstPost 0.1 allows allows remote attackers to obtain the full pathname of the server via an invalid post number in the post parameter, which leaks the pathname in an error message.

References

www.iss.net/security_center/static/8434.php

www.osvdb.org/7170

www.securityfocus.com/archive/1/261337

www.securityfocus.com/bid/4274