The default configuration for twiki 4.1.2 on Debian GNU/Linux, and possibly other operating systems, specifies the work area directory (cfg{RCS}{WorkAreaDir}) under the web document root, which might allow remote attackers to obtain sensitive information when .htaccess restrictions are not applied.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-10-04T16:00:00
Updated: 2008-11-15T10:00:00
Reserved: 2007-10-04T00:00:00
Link: CVE-2007-5193
JSON object: View
NVD Information
Status : Modified
Published: 2007-10-04T16:17:00.000
Modified: 2008-11-15T07:00:04.467
Link: CVE-2007-5193
JSON object: View
Redhat Information
No data.
CWE