CVE-2010-2859

CVE-2010-2859 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

news.php in SimpNews 2.47.3 and earlier allows remote attackers to obtain sensitive information via an invalid lang parameter, which reveals the installation path in an error message.

Learn more about our Web Application Penetration Testing UK.