Simple PHP Blog (sphpBlog) 0.4.0 allows remote attackers to obtain sensitive information via a direct request to sb_functions.php, which leaks the full pathname in a PHP error message.
Software | From | Fixed in |
---|---|---|
alexander_palmo / simple_php_blog | 0.4.0 | 0.4.0.x |