DLGuard 4.5 allows remote attackers to obtain the installation path via the c parameter to index.php.