CVE-2009-3815
CVE-2009-3815 affects RunCMS 2M1. When run with certain error_reporting levels, remote attackers can access sensitive information via the op[] parameter to modules/contact/index.php or the uid[] parameter to userinfo.php, causing an error message to leak the installation path through preg_match. ...