Coder-World Sysinfo vulnerabilities
2 known vulnerabilities affecting coder-world/sysinfo.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2006-1831P3HIGHCVSS 7.5PoCv1.212006-04-19
CVE-2006-1831 [HIGH] CVE-2006-1831: Direct static code injection vulnerability in sysinfo.cgi in sysinfo 1.21 and possibly other version
Direct static code injection vulnerability in sysinfo.cgi in sysinfo 1.21 and possibly other versions before 2.25 allows remote attackers to execute arbitrary commands via a leading ; (semicolon) in the name parameter in a systemdoc action, which is injected into phpinfo.php.
nvd
CVE-2006-1832P4MEDIUMCVSS 5.0PoCv1.212006-04-19
CVE-2006-1832 [MEDIUM] CVE-2006-1832: sysinfo.cgi in sysinfo 1.21 allows remote attackers to obtain the installation path via the debugger
sysinfo.cgi in sysinfo 1.21 allows remote attackers to obtain the installation path via the debugger action.
nvd