CVE-2004-1504

2004-12-31T05:00:00
ID CVE-2004-1504
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:31:00

Description

The displaycontent function in config.php for Just Another Flat file (JAF) CMS 3.0RC allows remote attackers to gain sensitive information via a blank show parameter, which reveals the installation path in an error message, as demonstrated using index.php.