VYPR
Moderate severityNVD Advisory· Published Jul 6, 2006· Updated Jun 16, 2026

CVE-2006-3360

CVE-2006-3360

Description

Directory traversal vulnerability in index.php in phpSysInfo 2.5.1 allows remote attackers to determine the existence of arbitrary files via a .. (dot dot) sequence and a trailing null (%00) byte in the lng parameter, which will display a different error message if the file exists.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
phpsysinfo/phpsysinfoPackagist
< 3.2.53.2.5

Affected products

2

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.