ID CVE-2007-1287
Summary A regression error in the phpinfo function in PHP 4.4.3 to 4.4.6, and PHP 6.0 in CVS, allows remote attackers to conduct cross-site scripting (XSS) attacks via GET, POST, or COOKIE array values, which are not escaped in the phpinfo output, as originally fixed for CVE-2005-3388.
References
Vulnerable Configurations
  • cpe:2.3:a:php:php:4.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:php:php:4.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:php:php:4.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:php:php:4.4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:php:php:4.4.6:*:*:*:*:*:*:*
    cpe:2.3:a:php:php:4.4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:php:php:6.0:*:*:*:*:*:*:*
    cpe:2.3:a:php:php:6.0:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 08-03-2011 - 02:51)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:P/A:N
refmap via4
apple APPLE-SA-2007-07-31
bid 25159
confirm
misc http://www.php-security.org/MOPB/MOPB-08-2007.html
osvdb 32774
secunia 26235
vupen ADV-2007-2732
statements via4
contributor Mark J Cox
lastmodified 2007-04-16
organization Red Hat
statement The phpinfo function should not be used in publically-accessible PHP scripts.
Last major update 08-03-2011 - 02:51
Published 06-03-2007 - 20:19
Back to Top