Moderate severityNVD Advisory· Published Dec 19, 2023· Updated Aug 2, 2024
CVE-2023-49006
CVE-2023-49006
Description
Cross Site Request Forgery (CSRF) vulnerability in Phpsysinfo version 3.4.3 allows a remote attacker to obtain sensitive information via a crafted page in the XML.php file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
phpsysinfo/phpsysinfoPackagist | < 3.4.3 | 3.4.3 |
Affected products
2Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-67gv-xrw7-p72wghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-49006ghsaADVISORY
- github.com/Hebing123/cve/issues/5ghsaWEB
- github.com/phpsysinfo/phpsysinfo/commit/4f2cee505e4f2e9b369a321063ff2c5e0c34ba45ghsaWEB
- huntr.com/bounties/ca6d669f-fd82-4188-aae2-69e08740d982ghsaWEB
- huntr.com/bounties/ca6d669f-fd82-4188-aae2-69e08740d982/mitre
News mentions
0No linked articles in our index yet.