Full Path Discolosure Bug #4841
Labels
Bug
For errors / faults / flaws / inconsistencies etc.
Major
Indicates the severity or impact or benefit of an issue is much higher than normal but not critical.
worksforme
The issue cannot be reproduced and things work as intended.
Comments
|
Thanks for the report! please see our security page: http://piwik.org/security/ Notes: Vulnerabilities such as Path disclosure, Information disclosure, Open Directory Listing, Application Errors on pages, User logins and emails enumeration, do not qualify for the bounty program. Please do not send us emails with these reports. |
This issue was closed.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hello , I found Full Path Discolsure bug on your website ( on your blog )
A malicious attacker could use this bug to know where does his files go when he submit an attack .
Here is the link :
http://crowdfunding.piwik.org/wp-content/plugins/ignitiondeck/templates/admin/_orderView.php
We can see :
/home/crowdfunding/www/crowdfunding.piwik.org
Thanks for answering .
Keywords: bug
The text was updated successfully, but these errors were encountered: