{"id":"CVE-2005-1688","details":"Wordpress 1.5 and earlier allows remote attackers to obtain sensitive information via a direct request to files in (1) wp-content/themes/, (2) wp-includes/, or (3) wp-admin/, which reveal the path in an error message.","modified":"2026-04-10T03:37:05.439078Z","published":"2005-05-20T04:00:00Z","references":[{"type":"ADVISORY","url":"http://marc.info/?l=bugtraq&m=111661517716733&w=2"}],"schema_version":"1.7.5"}