2017-09-06 21:00:00
mitre
PUBLISHED
Froxlor before 0.9.33.2 with the default configuration/setup might allow remote attackers to obtain the database password by reading /logs/sql-error.log.