Description
Coppermine Photo Gallery (CPG) 1.5.12 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by include/inspekt.php and certain other files.
Remediation
References
Related Vulnerabilities
Oracle Application Server CVE-2006-3709 Vulnerability (CVE-2006-3709)
WordPress Plugin Enhanced Plugin Admin Cross-Site Scripting (1.15)
WordPress Plugin MDTF-Wordpress Meta Data & Taxonomies Filter Cross-Site Request Forgery (2.2.7.2)
WordPress Plugin jQuery Reply to Comment Cross-Site Request Forgery (1.31)