CVE-2013-1402
DigiLIBE 3.4 - Exposure of Sensitive Configuration Information via Direct Request
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2013-1402. PoCs published by Robert Gilbert.
AI-analyzed exploit summary This is a vulnerability writeup describing an information disclosure vulnerability in DigiLIBE 3.4. The exploit involves accessing a specific URL path to bypass authentication and retrieve sensitive configuration data.
Description
DigiLIBE 3.4 and possibly other versions sends a redirect but does not exit, which allows remote attackers to obtain sensitive configuration information via a direct request to configuration/general_configuration.html.
Exploits (1)
This is a vulnerability writeup describing an information disclosure vulnerability in DigiLIBE 3.4. The exploit involves accessing a specific URL path to bypass authentication and retrieve sensitive configuration data.