{
  "modified": "2025-08-09T19:01:26Z",
  "published": "2007-04-30T22:19:00Z",
  "id": "CVE-2007-2353",
  "details": "Apache Axis 1.0 allows remote attackers to obtain sensitive information by requesting a non-existent WSDL file, which reveals the installation path in the resulting exception message.",
  "references": [
    {
      "type": "EVIDENCE",
      "url": "http://www.securityfocus.com/bid/23687"
    },
    {
      "type": "WEB",
      "url": "http://attrition.org/pipermail/vim/2007-April/001562.html"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/34154"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34167"
    }
  ]
}