paFileDB CVE-2004-1974 Information Disclosure Vulnerability

paFileDB is prone to a information disclosure vulnerability. paFileDB 3.1 allows remote attackers to gain sensitive information via a direct request to (1) login.php, (2) category.php, (3) search.php, (4) main.php, (5) viewall.php, (6) download.php, (7) email.php, (8) file.php, (9) rate.php, or (10) stats.php, which reveals the path in an error message.


 

Privacy Statement
Copyright 2010, SecurityFocus