Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
index.php in Aardvark Topsites PHP 5.2.1 and earlier allows remote attackers to obtain sensitive information via a negative integer value for the start parameter in a search action, which reveals the installation path in an error message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Avatic Aardvark Topsites PHP 'index.php'搜索信息泄露漏洞
Vulnerability Description
Aardvark Topsites PHP 5.2.1以及更早版本中的index.php允许远程攻击者通过给搜索操作中的开始参数,赋负整数值使页面报错,来取得敏感信息,该错误的信息会显示安装路径。
CVSS Information
N/A
Vulnerability Type
N/A