CVE-2006-3034

Name of the Vulnerable Software and Affected Versions MyScrapbook version 3.1

Description The issue allows remote attackers to obtain sensitive information by making a direct request to certain files, such as txt-db-api/sql.php, which reveals the path in an error message.

Recommendations For MyScrapbook version 3.1, consider restricting access to the txt-db-api directory to minimize the risk of exploitation. As a temporary workaround, avoid using the txt-db-api/sql.php file until a patch is available.