2 matches found
CVE-2023-33181 Sensitive Information Disclosure abusing Stack Trace in Xibo CMS
Xibo is a content management system CMS. Starting in version 3.0.0 and prior to version 3.3.5, some API routes will print a stack trace when called with missing or invalid parameters revealing sensitive information about the locations of paths that the server is using. Users should upgrade to...
CVE-2023-33181
CVE-2023-33181 affects Xibo CMS. From version 3.0.0 up to 3.3.4, some API routes emit a stack trace on calls with missing or invalid parameters, exposing sensitive information about server path locations. Upgrade to version 3.3.5 to fix the issue; there are no public workarounds besides upgrading...