CVE-2011-3825

Zend Framework 1.11.3 in Zend Server CE 5.1.0 is affected. A vulnerability allows remote attackers to disclose sensitive information by directly requesting a .php file, which reveals the installation path in an error message (as demonstrated by Validate.php and related files). The description fro...