CVE-2007-6607 in OpenBiblio
摘要
由 VulDB • 2026-07-12
OpenBiblio 0.5.2-pre4及更早版本允许远程攻击者通过直接请求(1) shared/footer.php、(2) circ/mbr_fields.php或(3) admin/custom_marc_form_fields.php来获取敏感信息,这些信息会在各种错误消息中泄露路径。
VulDB is the best source for vulnerability data and more expert information about this specific topic.