Vulnerability Details CVE-2002-1725
phpimageview.php in PHPImageView 1.0 allows remote attackers to obtain sensitive information via the pw=show option, which invokes the phpinfo function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://online.securityfocus.com/archive/82/270970/2002-12-21/2002-12-27/2
- http://www.ifrance.com/kitetoua/tuto/5holes4.txt
- http://www.securityfocus.com/bid/4668
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9001
- http://online.securityfocus.com/archive/82/270970/2002-12-21/2002-12-27/2
- http://www.ifrance.com/kitetoua/tuto/5holes4.txt
- http://www.securityfocus.com/bid/4668
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9001
Products affected by CVE-2002-1725
-
cpe:2.3:a:onlinetools.org:phpimageview:1.0