VYPR

Sysinfo

by Coder World

CVEs (2)

  • CVE-2006-1832Apr 19, 2006
    risk 0.04cvss epss 0.07

    sysinfo.cgi in sysinfo 1.21 allows remote attackers to obtain the installation path via the debugger action.

  • CVE-2006-1831Apr 19, 2006
    risk 0.04cvss epss 0.08

    Direct static code injection vulnerability in sysinfo.cgi in sysinfo 1.21 and possibly other versions before 2.25 allows remote attackers to execute arbitrary commands via a leading ; (semicolon) in the name parameter in a systemdoc action, which is injected into phpinfo.php.