Description
PhpMyFaq 1.5.1 allows remote attackers to obtain sensitive information via a LANGCODE parameter that does not exist, which reveals the path in an error message.
Remediation
References
Related Vulnerabilities
Atlassian Confluence CVE-2023-22503 Vulnerability (CVE-2023-22503)
WordPress Plugin ThirstyAffiliates Affiliate Link Manager Cross-Site Scripting (3.9.2)
WordPress Plugin Advanced Custom Fields PRO Arbitrary File Upload (5.12.2)
Nginx Off-by-one Error Vulnerability (CVE-2021-23017)
WordPress Plugin YITH WooCommerce Product Add-Ons Multiple Vulnerabilities (2.0.7)