Directory traversal vulnerability in phpSysInfo 2.1 and previous versions allows attackers with write access to a local directory to read arbitrary files as the PHP user or cause a denial of service via .. (dot dot) sequences in the (1) template or (2) lng parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpsysinfo phpsysinfo 2.0 |
||
phpsysinfo phpsysinfo 2.1 |