Coder-world Sysinfo : Security vulnerabilities, CVEs

Copy

CVE-2006-1832

sysinfo.cgi in sysinfo 1.21 allows remote attackers to obtain the installation path via the debugger action.

Max CVSS

5.0

EPSS Score

1.26%

Published

2006-04-19

Updated

2017-10-19

CVE-2006-1831

Direct static code injection vulnerability in sysinfo.cgi in sysinfo 1.21 and possibly other versions before 2.25 allows remote attackers to execute arbitrary commands via a leading ; (semicolon) in the name parameter in a systemdoc action, which is injected into phpinfo.php.

Max CVSS

7.5

EPSS Score

0.97%

Published

2006-04-19

Updated

2017-10-19

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!