Information disclosure in Snitz_communications Snitz_forums_2000

CVE-2008-0136

Snitz Forums 2000 3.4.05 allows remote attackers to obtain sensitive information via a direct request to forum/whereami.asp, which reveals the database path.

Vulnerability class: Information Disclosure

EPSS: 0.012 (64.9th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References