TOPo 1.43 allows remote attackers to obtain sensitive information by sending an HTTP request with an invalid parameter to (1) in.php or (2) out.php, which reveals the path to the TOPo directory in the error message.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2007-10-20T10:00:00
Updated: 2024-08-08T02:28:02.422Z
Reserved: 2007-10-19T00:00:00
Link: CVE-2003-1409

No data.

Status : Modified
Published: 2003-12-31T05:00:00.000
Modified: 2024-11-20T23:47:04.400
Link: CVE-2003-1409

No data.