[] NeoSense
E X P L O I T S
title author type platform port cve id

Gattaca Server 2003 - 'Language' Path Exposure

Author: dr_insane
type: webapps
platform: cgi
port: 
date_added: 2004-07-15 
date_updated: 2013-01-21 
verified: 1 
codes: CVE-2004-2518;OSVDB-7923 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/10729/info

It is reported that Gattaca Server 2003 contains multiple path disclosure vulnerabilities.

By sending HTTP requests to Gattaca's web server, it is reportedly possible to cause the application to return error pages that contain the full installation path of the application and the web document root path.

These vulnerabilities could be used by an attacker to aid them in further attacks against the server.

Version 1.1.10.0 is reported vulnerable. Prior versions may also contain these vulnerabilities as well.

http://www.example.com/web.tmpl?HELPID=8000&TEMPLATE=skins//water&LANGUAGE=[whatever]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.