DedeCMS 5.7 path disclosure CVE-2018-6910 Scanner
Details
Stay Up To Date
Follow @secforeveryoneAsset Type
DOMAIN,IP,URL
Need Membership
Yes
Asset Verify
Yes
API Support
Yes
Estimate Time (Second)
15
DedeCMS 5.7 path disclosure CVE-2018-6910 Scanner Detail
DedeCMS allows path disclosure vulnerability.
DedeCMS 5.7 allows remote attackers to discover the full path via a direct request for include/downmix.inc.php or inc/inc_archives_functions.php.
Some Advice for Common Problems
You should update to latest version.
