Vulnerability: DedeCMS 5.7 - Path Disclosure

DedeCMS 5.7 allows remote attackers to discover the full path via a direct request for include/downmix.inc.php or inc/inc_archives_functions.php

Impact

An attacker can use the disclosed path information to gather intelligence for further attacks or exploit other vulnerabilities.

Severity

high

Verified

Unknown