5

CVE-2004-2664

John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODB_DIR, which reveals the installation path in an error message.

Data is provided by the National Vulnerability Database (NVD)
John LimAdodb Version <= 4.22
John LimAdodb Version3.94
John LimAdodb Version4.00
John LimAdodb Version4.01
John LimAdodb Version4.02
John LimAdodb Version4.03
John LimAdodb Version4.04
John LimAdodb Version4.05
John LimAdodb Version4.10
John LimAdodb Version4.11
John LimAdodb Version4.20
John LimAdodb Version4.21
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.35% 0.567
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N