Description: during executions of
http://host/bitrix/templates/.default/subscribe/subscr_form.php
http://host /bitrix/php_interface/dbquery_error.php
there got an erros which is causing web server internal path information availability
Google search: inurl: /bitrix/
Discoveried By D_BuG d_bug (at) bk (dot) ru [email concealed]
NemesisSecurityTeam
http://nemesisoftware.com/
CheckZond free v. 1.0 http://nemesisoftware.com/products.htm
uses the vulnerabilities above for automatic vulnerabilities search (Google Hacking technique) and usage.
--
Best regards,
D_BuG mailto:d_bug (at) bk (dot) ru [email concealed]
Product:Bitrix Site Manager 4.0.x
Consequences: Web server paths
Risk: Minimal
Description: during executions of
http://host/bitrix/templates/.default/subscribe/subscr_form.php
http://host /bitrix/php_interface/dbquery_error.php
there got an erros which is causing web server internal path information availability
Google search: inurl: /bitrix/
Discoveried By D_BuG d_bug (at) bk (dot) ru [email concealed]
NemesisSecurityTeam
http://nemesisoftware.com/
CheckZond free v. 1.0 http://nemesisoftware.com/products.htm
uses the vulnerabilities above for automatic vulnerabilities search (Google Hacking technique) and usage.
--
Best regards,
D_BuG mailto:d_bug (at) bk (dot) ru [email concealed]
[ reply ]