Vulnerability Details CVE-2004-2664
John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODB_DIR, which reveals the installation path in an error message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.5%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2004-2664
-
cpe:2.3:a:john_lim:adodb:*
-
cpe:2.3:a:john_lim:adodb:3.94
-
cpe:2.3:a:john_lim:adodb:4.00
-
cpe:2.3:a:john_lim:adodb:4.01
-
cpe:2.3:a:john_lim:adodb:4.02
-
cpe:2.3:a:john_lim:adodb:4.03
-
cpe:2.3:a:john_lim:adodb:4.04
-
cpe:2.3:a:john_lim:adodb:4.05
-
cpe:2.3:a:john_lim:adodb:4.10
-
cpe:2.3:a:john_lim:adodb:4.11
-
cpe:2.3:a:john_lim:adodb:4.20
-
cpe:2.3:a:john_lim:adodb:4.21