CVE-2006-6998

Headstart Solutions DeskPRO - Exposure of Sensitive Information via phpinfo Query

Title source: llm
STIX 2.1

Description

install/loader_help.php in Headstart Solutions DeskPRO allows remote attackers to obtain configuration information via a q=phpinfo QUERY_STRING, which calls the phpinfo function.

References (1)

Core 1
Core References

Scores

EPSS 0.0108
EPSS Percentile 61.1%

Details

CWE
CWE-200
Status published
Products (2)
headstart_solutions/deskpro 2.0.0
headstart_solutions/deskpro 2.0.1
Published Feb 12, 2007
Tracked Since Feb 18, 2026