Full Path Disclosure in XiaoCms 20141229

Full Path Disclosure in XiaoCms 20141229

CVE-2018-19194 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

An issue was discovered in XiaoCms 20141229. /admin/index.php?c=database allows full path disclosure in a "failed to open stream" error message.

Learn more about our Cms Pen Testing.