CVE-2014-10005 Information

Description

Maian Uploader 4.0 allows remote attackers to obtain sensitive information via a request without the height parameter to load_flv.js.php which reveals the installation path in an error message.

Reference

http://packetstormsecurity.com/files/124918 http://www.osvdb.org/102487