Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1954

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-1954
Last Modified 05 Sep 2008 04:50:30
Published 16 Jun 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-1954

Summary

singapore 0.9.11 allows remote attackers to obtain sensitive information via a direct request to (1) admin.class.php, (2) any .tpl.php file in templates/admin_default/, or (3) any .tpl.php file in templates/default/, which reveal the path in an error message.

Vulnerable Systems

Application

  • Singapore 0.9.11


References

BUGTRAQ - 20050612 singapore v0.9.11 cross site scripting and path disclosure

SECTRACK - 1014186


Last Updated: 27 May 2016 10:40:21