monitor/index.php in op5 Monitor and op5 Appliance before 5.5.1 allows remote authenticated users to obtain sensitive information such as database and user credentials via error messages that are triggered by (1) a malformed hoststatustypes parameter to status/service/all or (2) a crafted request to config.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2013-12-31T20:00:00
Updated: 2024-08-06T18:16:20.085Z
Reserved: 2011-12-21T00:00:00
Link: CVE-2012-0263
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-12-31T20:55:15.073
Modified: 2024-11-21T01:34:41.193
Link: CVE-2012-0263
Redhat
No data.