Path Disclosure Vulnerability in EmpireCMS 6.6 via admin/tool/ShowPic.php

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EmpireCMS 6.6 allows remote attackers to discover the full path via an array value for a parameter to admin/tool/ShowPic.php.

Learn more about our Cms Pen Testing.