HTB22933: Multiple Path disclosure in webSPELL

Vulnerability ID: HTB22933
Reference: http://www.htbridge.ch/advisory/multiple_path_disclosure_in_webspell.html
Product: webSPELL
Vendor: http://www.webspell.org/ ( http://www.webspell.org/ )
Vulnerable Version: 4.2.2a
Vendor Notification: 05 April 2011
Vulnerability Type: Path disclosure
Risk level: Low
Credit: High-Tech Bridge SA Security Research Lab ( http://www.htbridge.ch/advisory/ )

Vulnerability Details:
A remote user can determine the full path to the web root directory and other potentially sensitive information.

The following PoC is available:

[code]
http://[host]/about.php
http://[host]/articles.php
http://[host]/awards.php
http://[host]/buddys.php
[/code]

Relevant Pages

[Squid 2004-OSC2Nuke-001] Inadequate Security Checking in OSC2Nuke
... developers added a simple security checking mechanism. ... The process consists of capturing the currently executing script's path and ... Note 2: Vulnerability: Full path disclosure. ...
(Bugtraq)
[Full-disclosure] DGNews version 2.1 Path Disclosure Vulnerability
... DGNews version 2.1 Path Disclosure Vulnerability ... DGNews is small and simple but powered news publishing. ...
(Full-Disclosure)
DGNews version 2.1 Path Disclosure Vulnerability
... DGNews version 2.1 Path Disclosure Vulnerability ... DGNews is small and simple but powered news publishing. ... There is no official fix at the release of this Security Advisory. ...
(Bugtraq)
Monkey Boards version 0.3.5 Multiple Path Disclosure Vulnerabilities
... Monkey Boards version 0.3.5 Multiple Path Disclosure Vulnerabilities ... Monkey Boards is a fully-featured message board system suitable for smaller web sites. ... Vulnerability Impact: Attack ...
(Bugtraq)
WSPortal version 1.0 Path Disclosure Vulnerability
... WSPortal version 1.0 Path Disclosure Vulnerability ... WSPortal is a site management system coded in PHP/MySQL. ... There is no official fix at the release of this Security Advisory. ...
(Bugtraq)