CVE-2007-6476

Properties

Published:
19.12.2007
Updated:
23.12.2007
Patch available:
Severity:
Medium
CVSS vector:
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Product:
GF_3Xplorer: GF_3Xplorer

Vulnerability description

GF-3XPLORER 2.4 allows remote attackers to obtain configuration information via a direct request to explorer/phpinfo.php, which calls the phpinfo function.

References:

MILW0RM: http://www.milw0rm.com/exploits/4738
SECUNIA: http://secunia.com/advisories/28164