CVE-2003-0536

EPSS 0.74%

phpsysinfo - directory traversal

發布日:2003/8/18修改日:2026/5/27

描述

Directory traversal vulnerability in phpSysInfo 2.1 and earlier allows attackers with write access to a local directory to read arbitrary files as the PHP user or cause a denial of service via .. (dot dot) sequences in the (1) template or (2) lng parameters.

受影響套件(2)

Debian/phpsysinfofrom 0, < 2.1-1
Debian/phpsysinfofrom 0, < 2.0-3woody1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0536