CVE-2003-0536

phpsysinfo <= 2.1 - Directory Traversal via Template or Language Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-0536. PoCs published by Albert Puigsech Galicia.

AI-analyzed exploit summary This exploit demonstrates a local file inclusion (LFI) vulnerability in PHPSysInfo, allowing local users to disclose arbitrary files or execute PHP code by manipulating the language include path via symlinks.

Description

Directory traversal vulnerability in phpSysInfo 2.1 and earlier allows attackers with write access to a local directory to read arbitrary files as the PHP user or cause a denial of service via .. (dot dot) sequences in the (1) template or (2) lng parameters.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Albert Puigsech Galicia · textwebappsphp
https://www.exploit-db.com/exploits/22459

This exploit demonstrates a local file inclusion (LFI) vulnerability in PHPSysInfo, allowing local users to disclose arbitrary files or execute PHP code by manipulating the language include path via symlinks.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: PHPSysInfo (version not specified)
No auth needed
Prerequisites: Local access to the system · Ability to create symlinks or files in a writable directory
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105128606513226&w=2
Patch, Vendor Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2003/dsa-346

Scores

EPSS 0.0147
EPSS Percentile 70.4%

Details

Status published
Products (2)
phpsysinfo/phpsysinfo 2.0
phpsysinfo/phpsysinfo 2.1
Published Aug 18, 2003
Tracked Since Feb 18, 2026