2006-03-21 06:00:00
mitre
PUBLISHED
Noahs Classifieds 1.3 and earlier allows remote attackers to obtain sensitive information via an invalid list parameter in the showdetails method to index.php, which reveals the path in an error message.