Unrated severityNVD Advisory· Published Dec 5, 2005· Updated Jun 16, 2026
CVE-2005-4026
CVE-2005-4026
Description
search.php in Geeklog 1.4.x before 1.4.0rc1, and 1.3.x before 1.3.11sr3, allows remote attackers to obtain sensitive information via invalid (1) datestart and (2) dateend parameters, which leaks the web server path in an error message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:geeklog:geeklog:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:geeklog:geeklog:*:*:*:*:*:*:*:*range: >=1.3.0,<=1.3.11
- cpe:2.3:a:geeklog:geeklog:1.3.11:rc1:*:*:*:*:*:*
- cpe:2.3:a:geeklog:geeklog:1.3.11:sr1:*:*:*:*:*:*
- cpe:2.3:a:geeklog:geeklog:1.3.11:sr2:*:*:*:*:*:*
- cpe:2.3:a:geeklog:geeklog:1.4.0:beta1:*:*:*:*:*:*
- (no CPE)range: <1.3.11sr3 (1.3.x) / <1.4.0rc1 (1.4.x)
Patches
Vulnerability mechanics
References
3- pridels0.blogspot.com/2005/11/geeklog-14x-full-path-disclosure-vuln.htmlnvdThird Party Advisory
- www.geeklog.net/article.php/geeklog-1.3.11sr3nvdVendor Advisory
- www.osvdb.org/21398nvdBroken Link
News mentions
0No linked articles in our index yet.