CVE-2006-3625
FLV Players 8 allows remote attackers to obtain sensitive information via (1) a direct request to paginate.php or (2) an invalid p parameter to player.php, which reveal the path in an error message.
Date published : 2006-07-14
http://www.securityfocus.com/archive/1/439886/100/0/threaded