Description
Joomla! 1.6.x before 1.6.2 allows remote attackers to obtain sensitive information via an empty Itemid array parameter to index.php, which reveals the installation path in an error message, a different vulnerability than CVE-2011-2488.
Remediation
References
Related Vulnerabilities
WordPress 4.2.x Multiple Vulnerabilities (4.2 - 4.2.32)
osCommerce Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2002-1991)
WordPress Plugin CopySafe Web Protection Cross-Site Request Forgery (2.5)
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-11112)