Joomla! 2.5.3 allows remote malicious users to obtain the installation path via the Host HTTP Header.
joomla joomla\\! 2.5.3