Description
Coppermine Photo Gallery (CPG) 1.4.14 allows remote attackers to obtain sensitive information via a direct request to include/slideshow.inc.php, which leaks the installation path in an error message.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2006-1870 Vulnerability (CVE-2006-1870)
WordPress Plugin Inline Gallery 'do' Parameter Cross-Site Scripting (0.3.9)
MySQL Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-4098)
Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-33816)