QuickPHP 'index.php' Remote Source Code Disclosure Vulnerability Network Vulnerability

Summary

QuickPHP is prone to a remote source-code-disclosure vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view the source code of files in the context of the server process this may aid in further attacks. QuickPHP 1.10.0 is vulnerable other versions may also be affected.

References

http://www.zachsaw.co.cc/?pg=quickphp_php_tester_debugger
https://www.securityfocus.com/bid/45626

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities
/doc directory browsable ?
appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability
Apache ActiveMQ Multiple Vulnerabilities
AfterLogic WebMail Pro Multiple Cross Site Scripting Vulnerabilities

Take action and discover your vulnerabilities