CVE-2006-6998
Headstart Solutions DeskPRO - Exposure of Sensitive Information via phpinfo Query
Title source: llmDescription
install/loader_help.php in Headstart Solutions DeskPRO allows remote attackers to obtain configuration information via a q=phpinfo QUERY_STRING, which calls the phpinfo function.
References (1)
Core 1
Core References
Various Sources x_refsource_misc
http://www.zion-security.com/text/Mul_Vulnerability_DeskPro.txt
Scores
EPSS
0.0108
EPSS Percentile
61.1%
Details
CWE
CWE-200
Status
published
Products (2)
headstart_solutions/deskpro
2.0.0
headstart_solutions/deskpro
2.0.1
Published
Feb 12, 2007
Tracked Since
Feb 18, 2026