N/A

CaLogic 1.22, and possibly earlier versions, allows remote attackers to obtain sensitive information via a direct request to (1) doclsqlres.php, (2) clmcpreload.php, (3) viewhistlog.php, (4) mcconfig.php, (5) doclsqlbak.php, (6) defcalsel.php, or (7) cl_minical.php, which reveals the path in an error message.

N/A

N/A

CaLogic 多个敏感信息泄露漏洞

CaLogic 1.22及可能早期版本允许远程攻击者借助于对(1)doclsqlres.php、(2)clmcpreload.php、(3)viewhistlog.php、(4)mcconfig.php、(5)doclsqlbak.php、(6)defcalsel.php或(7)cl_minical.php的直接访问获取敏感信息。该漏洞在错误信息中泄漏了路径信息。

N/A

N/A