Sysinfo
by Coder World
CVEs (2)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2006-1831 | 0.05 | — | 0.19 | Apr 19, 2006 | Direct static code injection vulnerability in sysinfo.cgi in sysinfo 1.21 and possibly other versions before 2.25 allows remote attackers to execute arbitrary commands via a leading ; (semicolon) in the name parameter in a systemdoc action, which is injected into phpinfo.php. | ||
| CVE-2006-1832 | 0.03 | — | 0.05 | Apr 19, 2006 | sysinfo.cgi in sysinfo 1.21 allows remote attackers to obtain the installation path via the debugger action. |
- CVE-2006-1831Apr 19, 2006risk 0.05cvss —epss 0.19
Direct static code injection vulnerability in sysinfo.cgi in sysinfo 1.21 and possibly other versions before 2.25 allows remote attackers to execute arbitrary commands via a leading ; (semicolon) in the name parameter in a systemdoc action, which is injected into phpinfo.php.
- CVE-2006-1832Apr 19, 2006risk 0.03cvss —epss 0.05
sysinfo.cgi in sysinfo 1.21 allows remote attackers to obtain the installation path via the debugger action.