In-Reply-To: <20040305130832.64623.qmail@web25104.mail.ukl.yahoo.com> This "vulnerability" was actually reported by GulfTech Security on March 2nd http://www.gulftech.org/03022004.php and posted on the governmentsecurity.org message board March 3rd http://www.governmentsecurity.org/forum/index.php?showtopic=7008 >~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~* > >Product: Invision Power Board > http://www.invisionboard.com >Versions: 1.3 Final (and probably lower) >Bug: Disclosure of install path >Impact: Attacker learns the local install > path of Invision Power Board and the > htdocs >Date: March 05, 2004 >Author: Shaun Colley > Email: shaunige@yahoo.co.uk > WWW: http://www.nettwerked.co.uk > >~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~* >
