CVE-2005-4026

N/A

Beschreibung

search.php in Geeklog 1.4.x before 1.4.0rc1, and 1.3.x before 1.3.11sr3, allows remote attackers to obtain sensitive information via invalid (1) datestart and (2) dateend parameters, which leaks the web server path in an error message.

CVE Details

CVSS v3.1 BewertungN/A

Veroffentlicht12/5/2005

Zuletzt geandert4/16/2026

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

geeklog:geeklog

Referenzen

http://pridels0.blogspot.com/2005/11/geeklog-14x-full-path-disclosure-vuln.html(cve@mitre.org)

http://www.geeklog.net/article.php/geeklog-1.3.11sr3(cve@mitre.org)

http://www.osvdb.org/21398(cve@mitre.org)

http://pridels0.blogspot.com/2005/11/geeklog-14x-full-path-disclosure-vuln.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.geeklog.net/article.php/geeklog-1.3.11sr3(af854a3a-2127-422b-91ae-364da2661108)

http://www.osvdb.org/21398(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.