CVE-2004-1203

Name of the Vulnerable Software and Affected Versions: phpCMS versions 1.2.1 and earlier

Description: The issue allows remote attackers to gain sensitive information via an invalid file parameter, which reveals the web server's installation path. This occurs when non-stealth and debug modes are enabled.

Recommendations: For phpCMS versions 1.2.1 and earlier, consider disabling non-stealth and debug modes to minimize the risk of exploitation. Additionally, restrict access to the parser.php file until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.