PwsPHP 1.2.2 allows remote malicious users to obtain sensitive information via a direct request to the admin directory, which reveals the path in an error message.
pwsphp pwsphp 1.2.2