2010-12-01 16:00:00
mitre
PUBLISHED
The phpinfo function in SiteEngine 5.x allows remote attackers to obtain system information by setting the action parameter to php_info in misc.php.