CVE-2008-4164 Information

Description

cron.php in MemHT Portal 3.9.0 and earlier allows remote attackers to obtain sensitive information via a direct request which reveals the installation path in an error message.

Reference

http://securityreason.com/securityalert/4288 https://exchange.xforce.ibmcloud.com/vulnerabilities/45413 https://www.exploit-db.com/exploits/6393