header-logo
Suggest Exploit
vendor:
PhpGedView
by:
SecurityFocus
7.5
CVSS
HIGH
Information Disclosure
200
CWE
Product Name: PhpGedView
Affected Version From: 2.61
Affected Version To: 2.61
Patch Exists: NO
Related CWE: N/A
CPE: a:phpgedview:phpgedview
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2004

PhpGedView Remote Information Disclosure Vulnerability

PhpGedView allows remote users to access information displayed by the phpinfo() function, which may disclose sensitive information about the environment the software runs in.

Mitigation:

Restrict access to the phpgedview_folder/admin.php?action=phpinfo page.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/9371/info

PhpGedView allows remote users to access information displayed by the phpinfo() function. This may disclose sensitive information about the environment the software runs in.

This issue is reported to affect PhpGedView 2.61. Other versions are also likely affected.

http://www.example.com/phpgedview_folder/admin.php?action=phpinfo

Navigation

Suggest Exploit

Services By CQR