CVE-2003-1173

Name of the Vulnerable Software and Affected Versions Centrinity FirstClass version 7.1

Description The issue allows remote attackers to access sensitive information. This can be achieved by appending 'search' to the end of the URL, checking all of the search option checkboxes, and leaving the text field blank. As a result, all files in the searched directory will be returned.

Recommendations For version 7.1, consider restricting access to the search functionality until a fix is available. As a temporary workaround, avoid using the search option with all checkboxes selected and the text field empty to minimize the risk of exploitation.