CVE-2018-19194
Vulnerability summary: XiaoCms 20141229 contains a path disclosure flaw where accessing /admin/index.php?c=database can disclose the full filesystem path via a 'failed to open stream' error. This is consistently described across NVD, Red Hat, CNVD, EU and CVE records. Impact: information disclosu...