CVE-2014-8939

2020-06-01T17:15:00
ID CVE-2014-8939
Type cve
Reporter cve@mitre.org
Modified 2020-06-02T18:28:00

Description

Lexiglot through 2014-11-20 allows remote attackers to obtain sensitive information (full path) via an include/smarty/plugins/modifier.date_format.php request if PHP has a non-recommended configuration that produces warning messages.