CVE-2018-12990
CVE-2018-12990 affects phpwcms 1.8.9. A remote attacker can disclose the installation path via an invalid csrf_token_value field, an information-disclosure issue arising from the csrf_token handling. Several sources (NVD/CNVD entries and related databases) describe phpwcms 1.8.9 as vulnerable to ...