Vulnerabilities > CVE-2004-2664 - Information Disclosure vulnerability in Adodb
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODB_DIR, which reveals the installation path in an error message. This vulnerability is addressed in the following product release: John Lim, ADOdb, 4.23
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 12 |