CVE-2012-4674 Information

Description

PluXml before 5.1.6 allows remote attackers to obtain the installation path via the PHPSESSID.

Reference

http://telechargements.pluxml.org/changelog http://www.pluxml.org/article59/sortie-de-pluxml-5-1-6