CVE-2011-3699

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2011-3699

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2011-3699.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2011-3699

Downstream

DEBIAN-CVE-2011-3699

UBUNTU-CVE-2011-3699

Published

2011-09-23T23:55:01Z

Modified

2026-04-10T03:41:59.192849Z

Summary

[none]

Details

John Lim ADOdb Library for PHP 5.11 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tests/test-active-record.php and certain other files.

References

http://code.google.com/p/inspathx/source/browse/trunk/paths_vuln/%21_README
http://code.google.com/p/inspathx/source/browse/trunk/paths_vuln/adodb
http://www.openwall.com/lists/oss-security/2011/06/27/6

CVE-2011-3699

Affected packages