CVE-2005-0326

Published: May 2, 2005Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

pafiledb.php in PaFileDB 3.1 allows remote attackers to gain sensitive information via an invalid or missing action parameter, which reveals the path in an error message when it cannot include a login.php script.

Affected (1)

Products: Php Arena: Pafiledb

Php Arena

1 product

Pafiledb

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Php Arena Pafiledb	Version 3.1

References (4)

http://marc.info/?l=bugtraq&m=110720365923818&w=2

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/19175

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=110720365923818&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/19175

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.