Vulnerabilities > CVE-2008-0149 - Unspecified vulnerability in Tutos 1.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
TUTOS 1.3 allows remote attackers to read system information via a direct request to php/admin/phpinfo.php, which calls the phpinfo function.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | TUTOS 1.3 (cmd.php) Remote Command Execution Vulnerability. CVE-2008-0148,CVE-2008-0149. Webapps exploit for php platform |
| file | exploits/php/webapps/4861.txt |
| id | EDB-ID:4861 |
| last seen | 2016-01-31 |
| modified | 2008-01-07 |
| platform | php |
| port | |
| published | 2008-01-07 |
| reporter | Houssamix |
| source | https://www.exploit-db.com/download/4861/ |
| title | TUTOS 1.3 cmd.php Remote Command Execution Vulnerability |
| type | webapps |