MiniCMS 1.10 allows full path disclosure via /mc-admin/post.php?state=delete&delete= with an invalid filename.
{ "source": "CPE_STRING", "cpe": "cpe:2.3:a:1234n:minicms:1.10:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "1.10" }, { "last_affected": "1.10" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-18890.json"