Vulnerabilities > CVE-2004-0130 - Unspecified vulnerability in PHPgedview 2.61

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

phpgedview

NVD

Published: 2004-03-03

Updated: 2024-11-20

Summary

login.php in phpGedView 2.65 and earlier allows remote attackers to obtain sensitive information via an HTTP request to login.php that does not contain the required username or password parameters, which causes the information to be leaked in an error message.

Vulnerable Configurations

Part	Description	Count
Application	Phpgedview Phpgedview Phpgedview 2.61	1

References

http://securitytracker.com/alerts/2004/Jan/1008844.html
http://securitytracker.com/alerts/2004/Jan/1008844.html
http://www.netvigilance.com/advisory0001
http://www.netvigilance.com/advisory0001
http://www.osvdb.org/6886
http://www.osvdb.org/6886
http://www.securiteam.com/unixfocus/5NP0M1PBPQ.html
http://www.securiteam.com/unixfocus/5NP0M1PBPQ.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/15128
https://exchange.xforce.ibmcloud.com/vulnerabilities/15128