Description
WordPress 2.0.3 allows remote attackers to obtain the installation path via a direct request to various files, such as those in the (1) wp-admin, (2) wp-content, and (3) wp-includes directories, possibly due to uninitialized variables.
Remediation
References
Related Vulnerabilities
MediaWiki Incorrect Default Permissions Vulnerability (CVE-2011-4361)
WebLogic CVE-2023-22031 Vulnerability (CVE-2023-22031)
WordPress Plugin Recently Multiple Vulnerabilities (3.0.4)
WordPress Plugin mTouch Quiz Multiple Vulnerabilities (3.0.6)
WordPress Plugin Chief Editor Multiple Vulnerabilities (3.7.1)