Information Disclosure Vulnerability in jNews Component for Joomla!

Information Disclosure Vulnerability in jNews Component for Joomla!

CVE-2012-4256 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The jNews (com_jnews) component 7.5.1 for Joomla! allows remote attackers to obtain sensitive information via the emailsearch parameter, which reveals the installation path in an error message.

Learn more about our Web Application Penetration Testing UK.