ELSEIF CMS Beta 0.6 allows remote attackers to obtain sensitive information (full path) via unspecified vectors to utilisateurs/votesresultats.php.
https://exchange.xforce.ibmcloud.com/vulnerabilities/37003
http://www.securityfocus.com/archive/1/481683/100/0/threaded