Description

PhpMyFaq 1.5.1 allows remote attackers to obtain sensitive information via a LANGCODE parameter that does not exist, which reveals the path in an error message.

Remediation

References

CVE-2005-3050

Related Vulnerabilities

Oracle Database Server CVE-2011-0870 Vulnerability (CVE-2011-0870)

WordPress Plugin YARPP-Yet Another Related Posts SQL Injection (5.30.2)

WordPress Plugin Cookie Information-Free GDPR Consent Solution Security Bypass (2.0.22)

Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-39151)

WordPress Plugin WordPress Shortcodes-Shortcodes Ultimate Directory Traversal (4.9.9)

Severity

Medium

Classification

CVE-2005-3050

Tags

Missing Update Known Vulnerabilities