flatpress
flatpress copied to clipboard
Published
20 hours ago •
flatpressblog
flatpressblog
Admin: Potential path disclosure by invalid parameters
trigger_error() causes potential path disclosure, depending on the server's error level.
Demo: https://www.site.tld/admin.php?p=DOESNOTEXIST&action=write&page=about
Effect:
Fatal error: Requested panel does not exists! in .../flatpress/admin/main.php on line 39
