CVE-2022-26159 - Ametys CMS - Unauthenticated information disclosure
February 28, 2022
The auto-completion plugin in Ametys CMS before 4.5.0 allows a remote unauthenticated attacker to read documents such as plugins/web/service/search/auto-completion/domain/en.xml.