phpSysInfo < 2.5 Multiple Script XSS

Binary data 2748.prm...

PHPSysInfo 2.0/2.3 - &#039;system_footer.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/12887/info phpSysInfo is reportedly affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script co...

PHPSysInfo 2.0/2.3 - &#039;sensor_program&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/12887/info phpSysInfo is reportedly affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script co...

phpSysInfo -- cross site scripting vulnerability

A Securityreason.com advisory reports that various cross site scripting vulnerabilities have been found in phpSysInfo. Input is not properly sanitised before it is returned to the user. A malicious person could exploit this to execute arbitrary HTML and script code in a users browser session. Als...

Debian DSA-346-1 : phpsysinfo - directory traversal

Albert Puigsech Galicia reported that phpsysinfo, a web-based program to display status information about the system, contains two vulnerabilities which could allow local files to be read, or arbitrary PHP code to be executed, under the privileges of the web server process usually www-data. These...

phpSysInfo: arbitrary code execution and directory traversal

Background phpSysInfo is a PHP system information tool. Description phpSysInfo contains two vulnerabilities which could allow local files to be read or arbitrary PHP code to be executed, under the privileges of the web server process. Impact An attacker could read local files or execute arbitrary...

CVE-2003-0536

Directory traversal vulnerability in phpSysInfo 2.1 and earlier allows attackers with write access to a local directory to read arbitrary files as the PHP user or cause a denial of service via .. dot dot sequences in the 1 template or 2 lng parameters...

CVE-2003-0536

Directory traversal vulnerability in phpSysInfo 2.1 and earlier allows attackers with write access to a local directory to read arbitrary files as the PHP user or cause a denial of service via .. dot dot sequences in the 1 template or 2 lng parameters...

DEBIAN-CVE-2003-0536

Directory traversal vulnerability in phpSysInfo 2.1 and earlier allows attackers with write access to a local directory to read arbitrary files as the PHP user or cause a denial of service via .. dot dot sequences in the 1 template or 2 lng parameters...

CVE-2003-0536

Directory traversal vulnerability in phpSysInfo 2.1 and earlier allows attackers with write access to a local directory to read arbitrary files as the PHP user or cause a denial of service via .. dot dot sequences in the 1 template or 2 lng parameters...

CVE-2003-0536

CVE-2003-0536 affects phpSysInfo 2.1 and earlier. The vulnerability is a directory traversal in templates or the lng parameter, allowing reading of arbitrary files by a user with write access to a local directory, or causing a denial of service via dot-dot sequences. The CVSS base score reported ...

CVE-2003-0536

Directory traversal vulnerability in phpSysInfo 2.1 and earlier allows attackers with write access to a local directory to read arbitrary files as the PHP user or cause a denial of service via .. dot dot sequences in the 1 template or 2 lng parameters...

[SECURITY] [DSA-346-1] New phpsysinfo packages fix directory traversal

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 346-1 [email protected] http://www.debian.org/security/ Matt Zimmerman July 8th, 2003 http://www.debian.org/security/faq -...

[SECURITY] [DSA-346-1] New phpsysinfo packages fix directory traversal

-------------------------------------------------------------------------- Debian Security Advisory DSA 346-1 [email protected] http://www.debian.org/security/ Matt Zimmerman July 8th, 2003 http://www.debian.org/security/faq -...

DSA-346 phpsysinfo - directory traversal

Bulletin has no description...

Unauthorized reading files on phpSysInfo

/----------------------------------------------------------------------------- | 7 A 6 9 - A d v C: 007 |-----------------------------------------------------------------------------| | | Unauthorized reading files on phpSysInfo |...

PHPSysInfo 2.02.1 - index.php File Disclosure

PHPSysInfo 2.02.1 - index.php File Disclosure source: https://www.securityfocus.com/bid/7275/info PHPSysInfo has been reported to be vulnerable to a file disclosure issue. Local users may be capable of influencing the include path for several PHPSysinfo template files. If the malicious template...