FLV Players 8 allows remote attackers to obtain sensitive information via (1) a direct request to paginate.php or (2) an invalid p parameter to player.php, which reveal the path in an error message.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Flv_player |
Flv |
8 |
8 |
References