Description
templates/system/error.php in Joomla! before 1.5.23 might allow remote attackers to obtain sensitive information via unspecified vectors that trigger an undefined value of a certain error field, leading to disclosure of the installation path. NOTE: this might overlap CVE-2011-2488.
Remediation
References
Related Vulnerabilities
Ruby Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-10933)
Ruby Cryptographic Issues Vulnerability (CVE-2012-5371)
WordPress Plugin Slimstat Analytics Cross-Site Scripting (4.9.2)
WordPress Plugin Gallery-Video Gallery and Youtube Gallery Cross-Site Scripting (1.7.01)
SharePoint Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-0929)