{
  "modified": "2025-08-09T19:01:28Z",
  "published": "2005-05-20T04:00:00Z",
  "id": "CVE-2005-1688",
  "details": "Wordpress 1.5 and earlier allows remote attackers to obtain sensitive information via a direct request to files in (1) wp-content/themes/, (2) wp-includes/, or (3) wp-admin/, which reveal the path in an error message.",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://marc.info/?l=bugtraq\u0026m=111661517716733\u0026w=2"
    }
  ]
}