VYPR
Unrated severityNVD Advisory· Published Jul 30, 2007· Updated Jun 16, 2026

CVE-2007-4048

CVE-2007-4048

Description

Cross-site scripting (XSS) vulnerability in index.php in phpSysInfo 2.5.4-dev and earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.

Affected products

2
  • cpe:2.3:a:phpsysinfo:phpsysinfo:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:phpsysinfo:phpsysinfo:*:*:*:*:*:*:*:*range: <=2.5.4-dev
    • (no CPE)range: <=2.5.4-dev

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.