CVE-2005-4149

Name of the Vulnerable Software and Affected Versions Lyris ListManager versions 8.8 through 8.9b

Description The issue allows remote attackers to obtain sensitive information by causing errors in TML scripts. This can be achieved through direct requests, which may leak the installation path, SQL queries, or product code in diagnostic messages.

Recommendations For versions 8.8 through 8.9b, consider restricting access to TML scripts to minimize the risk of exploitation. As a temporary workaround, review and modify error handling mechanisms to prevent sensitive information from being leaked in diagnostic messages.