Wordpress 1.5 and earlier allows remote attackers to obtain sensitive information via a direct request to files in (1) wp-content/themes/, (2) wp-includes/, or (3) wp-admin/, which reveal the path in an error message.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=111661517716733&w=2 |
Configurations
Information
Published : 2005-05-19 21:00
Updated : 2016-10-17 20:21
NVD link : CVE-2005-1688
Mitre link : CVE-2005-1688
JSON object : View
CWE
Products Affected
wordpress
- wordpress