Exploit SIPS 0.2.2 - User Information Disclosure

Exploiter

Хакер
34,599
0
18 Дек 2022
EDB-ID
22381
Проверка EDB
  1. Пройдено
Автор
DWCGR0UP
Тип уязвимости
REMOTE
Платформа
MULTIPLE
CVE
cve-2003-1553
Дата публикации
2003-03-18
Код:
source: https://www.securityfocus.com/bid/7134/info

It has been reported that authentication is not required to view user account information. As a result, an unauthorized remote attacker may be able to view potentially sensitive information. This may aid in launching further attacks against a target user or system.

http://www.example.com/[sips_directory]/sipssys/users/[first_letter_of_UserID]/
 
Источник
www.exploit-db.com

Похожие темы