1. Home
  2. CVE Database
  3. CVE-2004-1572
MEDIUM · 5.0

CVE-2004-1572

AJ-Fork 167 does not restrict access to directories such as (1) data, (2) inc, (3) plugins, (4) skins, or (5) tools, which allows remote attackers to list files in those directories via a direct HTTP ...

Vulnerability Description

AJ-Fork 167 does not restrict access to directories such as (1) data, (2) inc, (3) plugins, (4) skins, or (5) tools, which allows remote attackers to list files in those directories via a direct HTTP request.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:P/I:N/A:N
Confidentiality
PARTIAL
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
Aj-ForkAj-Fork167

References

FAQ

What is CVE-2004-1572?

CVE-2004-1572 is a vulnerability with a CVSS score of 5.0 (MEDIUM). AJ-Fork 167 does not restrict access to directories such as (1) data, (2) inc, (3) plugins, (4) skins, or (5) tools, which allows remote attackers to list files in those directories via a direct HTTP ...

How severe is CVE-2004-1572?

CVE-2004-1572 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2004-1572?

Check the references section above for vendor advisories and patch information. Affected products include: Aj-Fork Aj-Fork.