Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2004-2664

John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODB_DIR, which reveals the installation path in an error message.

  • Published: Dec 31, 2004
  • Updated: Apr 13, 2023
  • CVE: CVE-2004-2664
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
john_lim / adodb 4.05 4.05.x
john_lim / adodb 4.10 4.10.x
john_lim / adodb 4.03 4.03.x
john_lim / adodb 4.21 4.21.x
john_lim / adodb 3.94 3.94.x
john_lim / adodb 4.00 4.00.x
john_lim / adodb 4.02 4.02.x
john_lim / adodb 4.01 4.01.x
john_lim / adodb 4.11 4.11.x
john_lim / adodb - 4.22.x
john_lim / adodb 4.20 4.20.x
john_lim / adodb 4.04 4.04.x