Justice Guestbook 1.3 - Full Path Disclosure

Author: euronymous
type: webapps
platform: php
port: 
date_added: 2003-03-29  
date_updated: 2012-11-03  
verified: 1  
codes: CVE-2003-1535;OSVDB-40589  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 22444.txt  

source: https://www.securityfocus.com/bid/7234/info

A path disclosure vulnerability has been reported for Guestbook. The issue occurs when a request is made to the cfooter.php3 PHP script page.

Access to sensitive filesystem information may aid an attacker in launching further attacks against a target system

http://hostname/jgb_eng_php3/cfooter.php3