CVE-2011-0775

Published: Feb 4, 2011Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

pivotx/modules/module_image.php in PivotX 2.2.2 allows remote attackers to obtain sensitive information via a non-existent file in the image parameter, which reveals the installation path in an error message. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected (1)

Products: Pivotx: Pivotx

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Pivotx Pivotx	Version 2.2.2

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (8)

http://osvdb.org/70675

Source: cve@mitre.org

http://pivot-weblog.svn.sf.net/viewvc/pivot-weblog?view=revision&revision=3463

Source: cve@mitre.org

http://secunia.com/advisories/43041

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/64977

Source: cve@mitre.org

http://osvdb.org/70675

Source: af854a3a-2127-422b-91ae-364da2661108

http://pivot-weblog.svn.sf.net/viewvc/pivot-weblog?view=revision&revision=3463

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/43041

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/64977

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.