CVE-2005-1954 Information

Description

singapore 0.9.11 allows remote attackers to obtain sensitive information via a direct request to (1) admin.class.php (2) any .tpl.php file in templates/admin_default/ or (3) any .tpl.php file in templates/default/ which reveal the path in an error message.

Reference

http://marc.info/?l=bugtraq&m=111868634003167&w=2 http://securitytracker.com/id?1014186