2 matches found
CVE-2018-16977
Monstra CMS V3.0.4 has an information leakage risk e.g., PATH, DOCUMENTROOT, and SERVERADMIN in libraries/Gelato/ErrorHandler/Resources/Views/Errors/exception.php...
CVE-2018-16977
Monstra CMS v3.0.4 is affected by an information disclosure vulnerability in libraries/Gelato/ErrorHandler/Resources/Views/Errors/exception.php that can expose PATH, DOCUMENT_ROOT, and SERVER_ADMIN. The root cause is improper handling in the exception view, leading to leakage of server/environmen...