CVE-2014-5094 Information

Description

Status2k allows remote attackers to obtain configuration information via a phpinfo action in a request to status/index.php which calls the phpinfo function.

Reference

http://packetstormsecurity.com/files/127719/Status2k-XSS-SQL-Injection-Command-Execution.html https://exchange.xforce.ibmcloud.com/vulnerabilities/95114