Security Advisory

CVE-2023-46240

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-31 15:03:51

Last updated 2024-09-05 17:36:02

Assigner GitHub_M

State PUBLISHED

Description

CodeIgniter is a PHP full-stack web framework. Prior to CodeIgniter4 version 4.4.3, if an error or exception occurs, a detailed error report is displayed even if in the production environment. As a result, confidential information may be leaked. Version 4.4.3 contains a patch. As a workaround, replace `ini_set(display_errors, 0)` with `ini_set(display_errors, Off)` in `app/Config/Boot/production.php`.

← Browse all CVEs View on cve.org ↗