Vulnerability snicker

Post Reply
Jr. Bludit
Posts: 7
Joined: Thu Oct 10, 2019 8:36 am

Snicker plugin, requests the path to the admin panel, in the snicker.js file, the variable SNICKER_PATH, and the assignment takes place directly in the <head> :o! This is not correct, the path to the admin panel is hidden, and here it is freely announced. Please tell me why the plugin path to the admin panel? why would it use HTML_PATH_ADMIN_ROOT, how can it be fixed?
Post Reply