• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

DotBr Config.Inc Information Disclosure Vulnerability

The DotBr configuration file may potentially disclose sensitive information to remote attackers. This issue occurs because the configuration file does not have the proper PHP file extension, and may be displayed by the webserver instead of handled by the PHP interpreter. Database authentication credentials and other information may be disclosed as a result.