4 matches found
PhpGedView 2.61 PHPInfo Information Disclosure Weakness
No description provided by source. source: http://www.securityfocus.com/bid/9371/info PhpGedView allows remote users to access information displayed by the phpinfo function. This may disclose sensitive information about the environment the software runs in. This issue is reported to affect...
CVE-2004-0033
admin.php in PHPGEDVIEW 2.61 allows remote attackers to obtain sensitive information via an action parameter with a phpinfo command...
CVE-2004-0030
CVE-2004-0030 describes a PHP remote file inclusion in PHPGEDVIEW 2.61 via PGV_BASE_DIRECTORY in functions.php, authentication_index.php, and config_gedcom.php, enabling remote code execution by referencing a URL on a remote server. Root cause: unsafely using a user-controllable base directory pa...
PT-2004-1245 · Php · Phpgedview
Name of the Vulnerable Software and Affected Versions: PHPGEDVIEW version 2.61 Description: The issue allows remote attackers to execute arbitrary PHP code by modifying the PGV BASE DIRECTORY parameter to reference a URL on a remote web server that contains the code. This is possible due to a...