CVE-2014-8723

Published: 2017-03-17T14:59Z

Last Modified: 2024-11-21T02:19Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

GetSimple CMS 3.3.4 allows remote attackers to obtain sensitive information via a direct request to (1) plugins/anonymous_data.php or (2) plugins/InnovationPlugin.php, which reveals the installation path in an error message. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt