CVE-2006-2698
Geeklog 1.4.0sr2 and earlier is affected by a path-disclosure vulnerability. Remote attackers can obtain the full installation path by sending direct requests to layout/professional/functions.php or getimage.php with possibly invalid arguments. No remediation details are provided in the supplied ...