CVE-2009-2332
CMS Chainuk 1.2 and earlier is affected by a remote information-disclosure vulnerability. An attacker can cause the system to reveal the installation path in an error message by supplying (1) a crafted id parameter to index.php or (2) a nonexistent folder name in the id parameter to admin/admin_d...