XOOPS 2.0 XoopsOption - Information Disclosure

Author: gregory Le Bras
type: webapps
platform: php
port: 
date_added: 2003-03-20  
date_updated: 2012-11-01  
verified: 1  
codes: CVE-2003-1550;OSVDB-59365  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 22389.txt  

source: https://www.securityfocus.com/bid/7149/info

XOOPS has been reported vulnerable to an information disclosure vulnerability. According to the report, path information and other sensitive data may be output in server error messages. Information obtained in this manner may be used by an attacker to launch further attacks against a vulnerable system. This vulnerability was reported to affect XOOPS version 2.0. It is not currently known if other versions are affected.

http://www.example.com/index.php?xoopsOption=any_word