2 matches found
CVE-2011-3812
Vanilla 2.0.16 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/Minify/min/utils.php and certain other files...
CVE-2011-3812
CVE-2011-3812 affects Vanilla CMS 2.0.16, where a remote attacker can trigger an error message from direct requests to PHP files (notably plugins/Minify/min/utils.php) to reveal the installation path. The documents do not specify a confirmed patch or workaround; remediation details are not provid...