CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-4026

search.php in Geeklog 1.4.x before 1.4.0rc1, and 1.3.x before 1.3.11sr3, allows remote attackers to obtain sensitive information via invalid (1) datestart and (2) dateend parameters, which leaks the web server path in an error message.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.1%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2005-4026

Geeklog » Geeklog » Version: 1.3.0

cpe:2.3:a:geeklog:geeklog:1.3.0
Geeklog » Geeklog » Version: 1.3.10

cpe:2.3:a:geeklog:geeklog:1.3.10
Geeklog » Geeklog » Version: 1.3.11

cpe:2.3:a:geeklog:geeklog:1.3.11
Geeklog » Geeklog » Version: 1.3.5

cpe:2.3:a:geeklog:geeklog:1.3.5
Geeklog » Geeklog » Version: 1.3.6

cpe:2.3:a:geeklog:geeklog:1.3.6
Geeklog » Geeklog » Version: 1.3.7

cpe:2.3:a:geeklog:geeklog:1.3.7
Geeklog » Geeklog » Version: 1.3.8

cpe:2.3:a:geeklog:geeklog:1.3.8
Geeklog » Geeklog » Version: 1.3.9

cpe:2.3:a:geeklog:geeklog:1.3.9
Geeklog » Geeklog » Version: 1.4.0

cpe:2.3:a:geeklog:geeklog:1.4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-4026

Products

Pricing

Contact Us