lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Wed, 15 Jun 2005 17:58:05 +0400 From: D_BuG <d_bug@...ru> To: bugtraq <bugtraq@...urityfocus.com> Subject: Vulnerability: Bitrix Web Server Paths Vendor: Bitrix Product:Bitrix Site Manager 4.0.x Consequences: Web server paths Risk: Minimal Description: during executions of http://host/bitrix/templates/.default/subscribe/subscr_form.php http://host /bitrix/php_interface/dbquery_error.php there got an erros which is causing web server internal path information availability Google search: inurl: /bitrix/ Discoveried By D_BuG d_bug@...ru NemesisSecurityTeam http://nemesisoftware.com/ CheckZond free v. 1.0 http://nemesisoftware.com/products.htm uses the vulnerabilities above for automatic vulnerabilities search (Google Hacking technique) and usage. -- Best regards, D_BuG mailto:d_bug@...ru