ScozBook 1.1 - Full Path Disclosure

Author: euronymous
type: webapps
platform: php
port: 
date_added: 2003-03-29  
date_updated: 2012-11-03  
verified: 1  
codes: CVE-2003-1555;OSVDB-43917  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 22445.txt  

source: https://www.securityfocus.com/bid/7236/info

A path disclosure vulnerability has been reported for ScozBook. The issue occurs when a request is made to the view.php script page.

Access to sensitive filesystem information may aid an attacker in launching further attacks against a target system.

http://hostname/scozbook/view.php?PG=test