index.php in phpWebSite 0.10.0 and earlier allows remote attackers to obtain sensitive information via an invalid SEA_search_module parameter, which reveals the path in a PHP error message.
Software | From | Fixed in |
---|---|---|
phpwebsite / phpwebsite | 0.10.0 | 0.10.0.x |
phpwebsite / phpwebsite | 0.9.0 | 0.9.0.x |
phpwebsite / phpwebsite | 0.9.1 | 0.9.1.x |
phpwebsite / phpwebsite | 0.9.2 | 0.9.2.x |
phpwebsite / phpwebsite | 0.9.2.1 | 0.9.2.1.x |
phpwebsite / phpwebsite | 0.9.3 | 0.9.3.x |
phpwebsite / phpwebsite | 0.9.3.1 | 0.9.3.1.x |
phpwebsite / phpwebsite | 0.9.3.2 | 0.9.3.2.x |
phpwebsite / phpwebsite | 0.9.3.3 | 0.9.3.3.x |
phpwebsite / phpwebsite | 0.9.3.4 | 0.9.3.4.x |