install/loader_help.php in Headstart Solutions DeskPRO allows remote malicious users to obtain configuration information via a q=phpinfo QUERY_STRING, which calls the phpinfo function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
headstart solutions deskpro 2.0.0 |
||
headstart solutions deskpro 2.0.1 |