CVE-2005-1147 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2005-1147

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

calendar.pl in CalendarScript 3.20 allows remote attackers to obtain sensitive information via invalid (1) calendar or (2) template parameters, which leaks the full pathname and debug information.

Affected Software

Name	Vendor	Start Version	End Version
Calendarscript	Calendarscript	3.20 (including)	3.20 (including)

References

http://securitytracker.com/id?1013705
http://www.osvdb.org/15546
http://www.snkenjoi.com/secadv/secadv3.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/20102
http://securitytracker.com/id?1013705
http://www.osvdb.org/15546
http://www.snkenjoi.com/secadv/secadv3.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/20102