Package: phpbb2 Severity: grave Tags: security Justification: user security hole
A remote user can directly access 'phpBB/db/oracle.php' to cause the system to display an error message that discloses the installation path. See http://securitytracker.com/alerts/2005/Mar/1013377.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]