Description
themes/sample/theme.php in Coppermine Photo Gallery (CPG) 1.4.18 and earlier allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in an error message.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP-Forum Multiple SQL Injection Vulnerabilities (1.7.8)
Magento Improper Authorization Vulnerability (CVE-2020-24405)
Magento CVE-2019-8123 Vulnerability (CVE-2019-8123)
WordPress Plugin Secure Copy Content Protection and Content Locking SQL Injection (2.6.6)
WordPress Plugin Lightbox Multiple Unspecified Vulnerabilities (2.0.7)