CVE-2004-2039

Name of the Vulnerable Software and Affected Versions e107 version 0.615

Description The issue allows remote attackers to obtain sensitive information via a direct request to various files, including alt news.php, backend menu.php, clock menu.php, counter menu.php, login menu.php, and other files. These files reveal the full path in a PHP error message.

Recommendations For e107 version 0.615, consider restricting access to the mentioned files, such as alt news.php, backend menu.php, clock menu.php, counter menu.php, and login menu.php, to minimize the risk of exploitation. Additionally, ensure proper error handling is in place to prevent the disclosure of sensitive information.