CVE-2008-2864

eLineStudio Site Composer (ESC) 2.6 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) trigger.asp or (2) common2.asp in cms/include/, which reveals the database path.
Configurations

Configuration 1

cpe:2.3:a:elinestudio:site_composer:*:*:*:*:*:*:*:*
cpe:2.3:a:elinestudio:site_composer:2.5:*:*:*:*:*:*:*

Information

Published : 2008-06-25 12:36

Updated : 2018-10-11 08:44


NVD link : CVE-2008-2864

Mitre link : CVE-2008-2864

Products Affected
No products.
CWE