SiteX CVE-2007-1236 Information Disclosure Vulnerability

SiteX CVE-2007-1236 Information Disclosure Vulnerability

SiteX is prone to a information disclosure vulnerability. sitex allows remote attackers to obtain sensitive information via a request with a numerical value for the (1) sxMonth[] or (2) sxYear[] parameter to calendar.php, or the (3) page[] parameter to calendar_events.php, which reveals the path in various error messages.