Description
templates/system/error.php in Joomla! before 1.5.23 might allow remote attackers to obtain sensitive information via unspecified vectors that trigger an undefined value of a certain error field, leading to disclosure of the installation path. NOTE: this might overlap CVE-2011-2488.
Remediation
References
Related Vulnerabilities
Joomla Missing Authorization Vulnerability (CVE-2019-18674)
WordPress Plugin CheetahO Image Compression and Optimizer Unspecified Vulnerability (1.4.2.1)
WordPress Plugin Abandoned Cart Lite for WooCommerce Cross-Site Request Forgery (5.8.5)
Internet Information Services Other Vulnerability (CVE-1999-0191)
WordPress Plugin Wallable-Social Networking Arbitrary File Upload (1.1)