CVE-2011-3804
SweetRice 0.7.1 has an information disclosure vulnerability where remote attackers can cause an error message to reveal the installation path via a direct request to a PHP file (examples shown in _plugin/tiny_mce/plugins/advimage/images.php). The issue is documented across multiple sources (NVD, ...