CVE-2006-1112

Name of the Vulnerable Software and Affected Versions Aztek Forum version 4.0

Description The issue allows remote attackers to obtain sensitive information via a long login value in a register form. This is achieved by triggering a MySQL error message that displays the installation path.

Recommendations For Aztek Forum version 4.0, consider restricting access to the register form to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using long login values in the register form to prevent the display of sensitive information in MySQL error messages.