CVE-2009-2130
Elvin 1.2.0 is affected by CVE-2009-2130, where remote attackers can read PHP source files (inc/login.ei, inc/jump_bug.ei, inc/create_account.ei) via direct requests. The underlying issue is a file disclosure vulnerability in Elvin 1.2.0 leading to partial confidentiality impact. Public reference...