IceBB: Path disclosure Vulnerability

Users of IceBB please be advised of a Path disclosure vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

HTB22689: Path disclosure in IceBB
Product: IceBB
Vulnerability Type: Path disclosure
Vulnerability Details:
The vulnerability exists in the “/modules/make_image.php” script.
A remote user can determine the full path to the web root directory and other potentially sensitive information.Read more at http://www.criticalwatch.com
 

Advertisements