Unrated severityNVD Advisory· Published Jul 30, 2007· Updated Jun 16, 2026
CVE-2007-4048
CVE-2007-4048
Description
Cross-site scripting (XSS) vulnerability in index.php in phpSysInfo 2.5.4-dev and earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
Affected products
2cpe:2.3:a:phpsysinfo:phpsysinfo:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:phpsysinfo:phpsysinfo:*:*:*:*:*:*:*:*range: <=2.5.4-dev
- (no CPE)range: <=2.5.4-dev
Patches
Vulnerability mechanics
References
8News mentions
0No linked articles in our index yet.