{"id":"CVE-2007-2353","details":"Apache Axis 1.0 allows remote attackers to obtain sensitive information by requesting a non-existent WSDL file, which reveals the installation path in the resulting exception message.","aliases":["GHSA-2c4w-2px5-9x3x"],"modified":"2026-03-20T14:55:05.416269Z","published":"2007-04-30T22:19:00Z","references":[{"type":"EVIDENCE","url":"http://www.securityfocus.com/bid/23687"},{"type":"WEB","url":"http://attrition.org/pipermail/vim/2007-April/001562.html"},{"type":"WEB","url":"http://www.osvdb.org/34154"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/34167"}],"schema_version":"1.7.5"}