CVE-2005-1235 Information

Description

auction_my_auctions.php in phpbb-Auction 1.2m and earlier allows remote attackers to obtain sensitive information via an invalid mode parameter which leaks the full path in a PHP error message.

Reference

http://secunia.com/advisories/15029 http://securitytracker.com/id?1013779 http://www.osvdb.org/15706 http://www.phpbb-auction.com/sutra5600.html http://www.snkenjoi.com/secadv/secadv9.txt