CVE-2007-0490 Information

Description

index.php in Open-Realty 2.3.4 allows remote attackers to obtain sensitive information (the full path) via an invalid listingID parameter in a listingview action.

Reference

http://www.securityfocus.com/archive/1/457676/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/31657