CVE-2006-7000

Name of the Vulnerable Software and Affected Versions Headstart Solutions DeskPRO (affected versions not specified)

Description The issue allows remote attackers to obtain the full path via direct requests to certain files, which leaks the path in error messages. Specifically, the affected files include email/mail.php, includes/init.php, certain files in includes/cron/, and graph files such as jpgraph.php, jpgraph bar.php, jpgraph pie.php, and jpgraph pie3d.php in includes/graph/.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.