2 matches found
CVE-2009-4170
WP-Cumulus Plug-in 1.20 for WordPress, and possibly other versions, allows remote attackers to obtain sensitive information via a crafted request to wp-cumulus.php, probably without parameters, which reveals the installation path in an error message...
CVE-2009-4170
CVE-2009-4170 affects the WP-Cumulus WordPress plugin (1.20 and possibly other versions). A remote attacker can trigger a crafted request to wp-cumulus.php (likely without parameters) to cause an error message that reveals the installation path, constituting information disclosure with partial co...