Description Joomla! 2.5.3 allows remote attackers to obtain the installation path via the Host HTTP Header. Remediation References CVE-2012-3829 Related Vulnerabilities PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-6712) WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress Multiple Cross-Site Scripting Vulnerabilities (3.2.2) WordPress Plugin dsSearchAgent:WordPress Edition Cross-Site Scripting (1.0-beta10) WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Cross-Site Request Forgery (2.7.7) WeBid Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-1000882) Severity Medium Classification CVE-2012-3829 CWE-200 Tags Missing Update Known Vulnerabilities