paFileDB CVE-2005-0326 Information Disclosure Vulnerability

paFileDB CVE-2005-0326 Information Disclosure Vulnerability

paFileDB is prone to a information disclosure vulnerability. pafiledb.php in PaFileDB 3.1 allows remote attackers to gain sensitive information via an invalid or missing action parameter, which reveals the path in an error message when it cannot include a login.php script.