CVE-2005-1688 Information

Description

Wordpress 1.5 and earlier allows remote attackers to obtain sensitive information via a direct request to files in (1) wp-content/themes/ (2) wp-includes/ or (3) wp-admin/ which reveal the path in an error message.

Reference

http://marc.info/?l=bugtraq&m=111661517716733&w=2