CVE-2014-5094

Status2k - Information Disclosure

Title source: rule
STIX 2.1

Description

Status2k allows remote attackers to obtain configuration information via a phpinfo action in a request to status/index.php, which calls the phpinfo function.

Exploits (1)

exploitdb WRITEUP
by Shayan S · textwebappsphp
https://www.exploit-db.com/exploits/34239

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/95114

Scores

EPSS 0.0715
EPSS Percentile 91.6%

Details

CWE
CWE-200
Status published
Products (1)
status2k/status2k
Published Oct 20, 2014
Tracked Since Feb 18, 2026