← volver
CVE-2005-4304

CVE-2005-4304

EPSS 1.5%
index.php in ezDatabase 2.1.2 and earlier allows remote attackers to obtain sensitive information via an invalid cat_id parameter, which leaks the full pathname in an error message. NOTE: these details are uncertain because the original report has terminology problems and lack of relevant details. The description is based partially on feedback comments.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://pridels0.blogspot.com/2005/12/ezdatabase-vuln.htmlhttp://secunia.com/advisories/18043http://www.osvdb.org/21798http://www.securityfocus.com/bid/15908