Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026
CVE-2004-1504
CVE-2004-1504
Description
The displaycontent function in config.php for Just Another Flat file (JAF) CMS 3.0RC allows remote attackers to gain sensitive information via a blank show parameter, which reveals the installation path in an error message, as demonstrated using index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
3- echo.or.id/adv/adv08-y3dips-2004.txtnvdExploitVendor Advisory
- marc.infonvd
- exchange.xforce.ibmcloud.com/vulnerabilities/18006nvd
News mentions
0No linked articles in our index yet.