CVE-2004-0130

Name of the Vulnerable Software and Affected Versions phpGedView versions 2.65 and earlier

Description The issue allows remote attackers to obtain sensitive information via an HTTP request to "login.php" that does not contain the required username or password parameters, which causes the information to be leaked in an error message.

Recommendations For phpGedView versions 2.65 and earlier, consider disabling access to the "login.php" file until a patch is available, or ensure that all requests to "login.php" include the required username and password parameters to prevent information leakage.