MidnightBSD

Advisories for php-survey

CVE-2002-0614 MEDIUM

PHP-Survey 20000615 and earlier stores the global.inc file under the web root, which allows remote attackers to obtain sensitive information, including database credentials, if .inc files are not preprocessed by the server.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
php-survey php-survey 2000-04-21
php-survey php-survey 2000-04-20
php-survey php-survey 2000-06-14b
php-survey php-survey 2000-06-15
php-survey php-survey 2000-06-14
php-survey php-survey prebeta2000-03-27