Medium severity5.3NVD Advisory· Published Nov 12, 2018· Updated Jun 17, 2026
CVE-2018-19194
CVE-2018-19194
Description
An issue was discovered in XiaoCms 20141229. /admin/index.php?c=database allows full path disclosure in a "failed to open stream" error message.
Affected products
1Patches
Vulnerability mechanics
References
1- github.com/AvaterXXX/XiaoCms/blob/master/INFO_EXP.mdnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.