CVE-2005-2394
The CVE-2005-2394 entry concerns CuteNews 1.3.6: the show_news.php script can disclose the server’s full path through an invalid archive parameter. This is a path disclosure vulnerability (network access, low complexity) with partial confidentiality impact and no integrity or availability impact ...