Vulnerabilities > Phpsysinfo

DATE CVE VULNERABILITY TITLE RISK
2023-12-19 CVE-2023-49006 Cross-Site Request Forgery (CSRF) vulnerability in PHPsysinfo 3.4.3
Cross Site Request Forgery (CSRF) vulnerability in Phpsysinfo version 3.4.3 allows a remote attacker to obtain sensitive information via a crafted page in the XML.php file.
network
low complexity
phpsysinfo CWE-352
6.5
6.5
2007-07-30 CVE-2007-4048 Cross-Site Scripting vulnerability in phpSysInfo
Cross-site scripting (XSS) vulnerability in index.php in phpSysInfo 2.5.4-dev and earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
network
phpsysinfo
4.3
4.3
2005-11-18 CVE-2005-3348 Cross-Site Request Forgery (CSRF) vulnerability in PHPsysinfo
HTTP response splitting vulnerability in index.php in phpSysInfo 2.4 and earlier, as used in phpgroupware 0.9.16 and earlier, and egroupware before 1.0.0.009, allows remote attackers to spoof web content and poison web caches via CRLF sequences in the charset parameter. 		4.3
4.3
2005-05-02 CVE-2005-0870 Cross-Site Scripting vulnerability in PHPsysinfo 2.3
Multiple cross-site scripting (XSS) vulnerabilities in phpSysInfo 2.3, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) sensor_program parameter to index.php, (2) text[language], (3) text[template], or (4) hide_picklist parameter to system_footer.php.
network
phpsysinfo
4.3
4.3
2005-05-02 CVE-2005-0869 Information Disclosure vulnerability in PHPsysinfo 2.3
phpSysInfo 2.3 allows remote attackers to obtain sensitive information via a direct request to (1) class.OpenBSD.inc.php, (2) class.NetBSD.inc.php, (3) class.FreeBSD.inc.php, (4) class.Darwin.inc.php, (5) XPath.class.php, (6) system_header.php, or (7) system_footer.php, which reveal the path in a PHP error message.
network
low complexity
phpsysinfo
5.0
5.0
2003-08-18 CVE-2003-0536 Unspecified vulnerability in PHPsysinfo 2.0/2.1
Directory traversal vulnerability in phpSysInfo 2.1 and earlier allows attackers with write access to a local directory to read arbitrary files as the PHP user or cause a denial of service via ..
local
low complexity
phpsysinfo
3.6
3.6