CVE-2003-1550 Information

Description

XOOPS 2.0 and possibly earlier versions allows remote attackers to obtain sensitive information via an invalid xoopsOption parameter which reveals the installation path in an error message.

Reference

http://marc.info/?l=bugtraq&m=104820295115420&w=2 http://marc.info/?l=bugtraq&m=104887510828106&w=2 http://secunia.com/advisories/8353 http://www.security-corporation.com/index.php?id=advisories&a=011-FR http://www.securityfocus.com/bid/7149 https://exchange.xforce.ibmcloud.com/vulnerabilities/11587