| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0025775 | mantisbt | bugtracker | public | 2019-05-20 22:21 | 2019-05-20 22:21 |
| Reporter | vboctor | Assigned To | |||
| Priority | normal | Severity | minor | Reproducibility | always |
| Status | new | Resolution | open | ||
| Product Version | 2.20.1 | ||||
| Summary | 0025775: Error disclosing server file paths | ||||
| Description | I noticed that when a plugin_lang_get() attempts to fetch a string that doesn't exist, the error message discloses the full path to the MantisBT instance on the server. I suspect this happens in other errors as well. See attached image. | ||||
| Tags | No tags attached. | ||||
- Anonymous
