CVE-2004-1974 Information

Description

paFileDB 3.1 allows remote attackers to gain sensitive information via a direct request to (1) login.php (2) category.php (3) search.php (4) main.php (5) viewall.php (6) download.php (7) email.php (8) file.php (9) rate.php or (10) stats.php which reveals the path in an error message.

Reference

http://marc.info/?l=bugtraq&m=108311096022485&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15990