CVE-2006-5138 - Interpenetrable Mustard

Description

Groupee UBB.threads 6.5.1.1 allows remote attackers to obtain sensitive information via a direct request for cron/php/subscriptions.php which reveals the path in an error message.

Reference

http://www.securityfocus.com/bid/20266 http://securityreason.com/securityalert/1676 https://exchange.xforce.ibmcloud.com/vulnerabilities/29273 http://www.securityfocus.com/archive/1/447359/100/0/threaded