Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Html-edit CMS 3.1.8 allows remote attackers to obtain sensitive information via a direct request to (1) pages.php and (2) menu.php in includes/core_files and (3) extensions/login/frontend/pages/antihacker.php, which reveals the installation path in an error message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Html-edit CMS敏感信息泄露漏洞
Vulnerability Description
Html-edit CMS是一款由PHP开发的简单的开源CMS。 Html-edit CMS 3.1.8版本中存在漏洞。由于在错误信息中显示了安装路径信息,远程攻击者可以借助对includes/core_files路径下的(1)pages.php,(2)menu.php文件,及(3)extensions/login/frontend/pages/antihacker.php文件的直接请求获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A