CVE-2007-3079 Information

Description

listmembers.php in EQdkp 1.3.2c and earlier allows remote attackers to obtain sensitive information via an invalid compare parameter which reveals the path.

Reference

http://marc.info/?l=full-disclosure&m=118093304724372&w=2 http://osvdb.org/38363 https://exchange.xforce.ibmcloud.com/vulnerabilities/34694