Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026
CVE-2004-2671
CVE-2004-2671
Description
mod.php in eNdonesia 8.3 allows remote attackers to obtain sensitive information via certain direct requests, and certain requests with invalid parameter values, which reveal the path in various error messages, as demonstrated by the (1) mod and (2) cid parameters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:endonesia:endonesia:8.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:endonesia:endonesia:8.3:*:*:*:*:*:*:*
- (no CPE)range: = 8.3
Patches
Vulnerability mechanics
References
6- echo.or.id/adv/adv02-y3dips-2004.txtnvdExploitVendor Advisory
- www.securityfocus.com/archive/1/370855nvdExploitVendor Advisory
- www.securityfocus.com/bid/8507nvdExploitVendor Advisory
- secunia.com/advisories/12231nvdVendor Advisory
- securitytracker.com/idnvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/13042nvd
News mentions
0No linked articles in our index yet.