Vulnerability Details CVE-2009-2134
pivot/tb.php in Pivot 1.40.4 and 1.40.7 allows remote attackers to obtain sensitive information via an invalid url parameter, which reveals the installation path in an error message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.02
EPSS Ranking 82.8%
CVSS Severity
CVSS v2 Score 5.0
References
- http://forum.intern0t.net/intern0t-advisories/1119-intern0t-pivot-1-40-4-7-multiple-vulnerabilities.html
- http://www.securityfocus.com/archive/1/504300/100/0/threaded
- https://www.exploit-db.com/exploits/8941
- http://forum.intern0t.net/intern0t-advisories/1119-intern0t-pivot-1-40-4-7-multiple-vulnerabilities.html
- http://www.securityfocus.com/archive/1/504300/100/0/threaded
- https://www.exploit-db.com/exploits/8941