Back to search
CVE-2005-4304
Published: Dec 17, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
index.php in ezDatabase 2.1.2 and earlier allows remote attackers to obtain sensitive information via an invalid cat_id parameter, which leaks the full pathname in an error message. NOTE: these details are uncertain because the original report has terminology problems and lack of relevant details. The description is based partially on feedback comments.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
15908
vdb-entry
x_refsource_BID
http://pridels0.blogspot.com/2005/12/ezdatabase-vuln.html
x_refsource_MISC
18043
third-party-advisory
x_refsource_SECUNIA
21798
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now