CVE-2023-33181

Name of the Vulnerable Software and Affected Versions Xibo versions 3.0.0 through 3.3.4

Description Xibo is a content management system (CMS) that has an issue where some API routes print a stack trace when called with missing or invalid parameters, revealing sensitive information about the server's path locations.

Recommendations For versions 3.0.0 through 3.3.4, upgrade to version 3.3.5 to fix the issue. As a temporary workaround, consider restricting access to the affected API routes until the issue is resolved by upgrading to version 3.3.5.