Page 1 of 1

Vulnerability snicker

Posted: Sat Oct 19, 2019 8:57 am
by terat
Snicker plugin, requests the path to the admin panel, in the snicker.js file, the variable SNICKER_PATH, and the assignment takes place directly in the <head> :o! This is not correct, the path to the admin panel is hidden, and here it is freely announced. Please tell me why the plugin path to the admin panel? why would it use HTML_PATH_ADMIN_ROOT, how can it be fixed?