Allaire ColdFusion Path Disclosure Vulnerability

Making an http request directly to an existing APPLICATION.CFM or ONREQUESTEND.CFM file will return an error message containing the full physical path to the file.


 

Privacy Statement
Copyright 2010, SecurityFocus