VYPR
← All advisories
Unrated severityNVD Advisory· Published Sep 24, 2005· Updated Jun 16, 2026

CVE-2005-3050

CVE-2005-3050

Description

PhpMyFaq 1.5.1 allows remote attackers to obtain sensitive information via a LANGCODE parameter that does not exist, which reveals the path in an error message.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • PhpMyAdmin/Phpmyfaq2 versions
    cpe:2.3:a:phpmyfaq:phpmyfaq:1.5.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:phpmyfaq:phpmyfaq:1.5.1:*:*:*:*:*:*:*
    • (no CPE)range: = 1.5.1

Patches

Vulnerability mechanics

Root cause

"Missing input validation on the LANGCODE parameter causes PHP to emit an error message that discloses the installation path."

Attack vector

An attacker sends an HTTP GET request to `index.php` with a `LANGCODE` parameter that points to a file that does not exist on the server, for example `LANGCODE=a_non_existent_file` [ref_id=1]. The application attempts to include the supplied path, and the resulting PHP error message discloses the installation directory's absolute path. No authentication is required, and the attack is trivially executed over the network.

Affected code

The advisory identifies `index.php` as the vulnerable entry point. When the `LANGCODE` parameter is set to a non-existent file, the application includes it directly without validation, causing PHP to emit an error message that reveals the full filesystem path.

What the fix does

The advisory does not include a patch or official remediation. It recommends that users upgrade to a version that properly validates the `LANGCODE` parameter before passing it to file-inclusion logic, or that administrators disable `display_errors` in `php.ini` to prevent path leakage in error messages. No vendor-supplied fix is published in the bundle.

Preconditions

  • configThe application must be configured to display PHP error messages (display_errors enabled).
  • authNo authentication is required; the attack is unauthenticated.
  • networkThe attacker must be able to send HTTP GET requests to the target server.
  • inputThe LANGCODE parameter must be set to a value that does not correspond to an existing language file.

Reproduction

Send a GET request to the target: `http://[target]/[path]/phpmyfaq/index.php?LANGCODE=a_non_existent_file`. The server will respond with an error message that includes the full filesystem path of the phpMyFAQ installation [ref_id=1].

Generated on May 26, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

2

News mentions

0

No linked articles in our index yet.