Description
Coppermine Photo Gallery (CPG) 1.4.14 allows remote attackers to obtain sensitive information via a direct request to include/slideshow.inc.php, which leaks the installation path in an error message.
Remediation
References
Related Vulnerabilities
WordPress Plugin Chat Cross-Site Scripting (1.0.8)
WordPress Plugin Loginizer Cross-Site Scripting (1.3.9)
MySQL CVE-2016-0596 Vulnerability (CVE-2016-0596)
WordPress Plugin Far Future Expiry Header Cross-Site Request Forgery (1.4)
WordPress Plugin Forums 'url' Parameter Arbitrary File Disclosure (1.4.3)