Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-2506

Description

Unparsed web content delivery vulnerability in WIKINDX before 0.9.9g allows remote attackers to obtain sensitive information via a direct HTTP request to the config.inc file.

Affected products

Wikindx/Wikindx14 versions
cpe:2.3:a:wikindx:wikindx:0.9.1:*:*:*:*:*:*:*+ 13 more
- cpe:2.3:a:wikindx:wikindx:0.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.3:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.4:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.5:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.6:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.7:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.8:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.9:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.9b:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.9c:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.9d:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.9e:*:*:*:*:*:*:*
- cpe:2.3:a:wikindx:wikindx:0.9.9f:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/11394nvdPatchVendor Advisory
sourceforge.net/project/shownotes.phpnvdPatch
www.osvdb.org/5401nvd
exchange.xforce.ibmcloud.com/vulnerabilities/15885nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000