CVE-2018-7251 – AnchorCMS < 0.12.3a - Information Disclosure

https://notcve.org/view.php?id=CVE-2018-7251

19 Feb 2018 — An issue was discovered in config/error.php in Anchor 0.12.3. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error (such as "Too many connections") has occurred. Se ha descubierto un problema en config/error.php en Anchor 0.12.3. El registro de errores se expone en un URI errors.log y contiene credenciales de MySQL si ha ocurrido un error de MySQL (como "Too many connections"). • https://packetstorm.news/files/id/154723 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •