CVE-2003-1555 Information

Description

ScozNet ScozBook 1.1 BETA allows remote attackers to obtain sensitive information via an invalid PG parameter in view.php which reveals the installation path in an error message.

Reference

http://secunia.com/advisories/8476 http://securityreason.com/securityalert/3781 http://www.securityfocus.com/archive/1/316747/30/25280/threaded http://www.securityfocus.com/bid/7236 http://www.securitytracker.com/id?1006413 https://exchange.xforce.ibmcloud.com/vulnerabilities/11659