Description
Simple PHP Blog (sphpBlog) 0.4.0 allows remote attackers to obtain sensitive information via a direct request to sb_functions.php, which leaks the full pathname in a PHP error message.
Affected products
- alexander_palmo / simple_php_blog0.4.0 – 0.4.0