CVE-2005-0326

Published: Feb 10, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

pafiledb.php in PaFileDB 3.1 allows remote attackers to gain sensitive information via an invalid or missing action parameter, which reveals the path in an error message when it cannot include a login.php script.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

pafiledb-login-path-disclosure(19175)

vdb-entry

x_refsource_XF

20050131 [PersianHacker.net] Full Path Disclosure and PHP Injection In Pafiledb 3.1 Final

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2005-0326

Description

Affected Products

References