Incorrect Access Control issue discovered in tpcms 3.2 allows remote malicious users to view sensitive information via path in application URL.
tpcms project tpcms 3.2