The modload op in the Reviews module for PostNuke 0.760-RC3 allows remote attackers to obtain sensitive information via an invalid id parameter, which reveals the path in a PHP error message.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Postnuke | Postnuke_software_foundation | 0.760_rc3 (including) | 0.760_rc3 (including) |