Vulnerability Details CVE-2015-2209
DLGuard 4.5 allows remote attackers to obtain the installation path via the c parameter to index.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://seclists.org/fulldisclosure/2015/Feb/67
- http://tetraph.com/security/full-path-disclosure-vulnerability/dlguard-full-path-disclosure-information-leakage-security-vulnerabilities/
- http://www.securityfocus.com/bid/72685
- http://seclists.org/fulldisclosure/2015/Feb/67
- http://tetraph.com/security/full-path-disclosure-vulnerability/dlguard-full-path-disclosure-information-leakage-security-vulnerabilities/
- http://www.securityfocus.com/bid/72685