CVE-2009-2443

Siteframe 3.2.3, and other 3.2.x versions, allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function.

Date published : 2009-07-13

http://www.securityfocus.com/bid/35598

http://www.packetstormsecurity.org/0907-exploits/siteframe-sqlphpinfo.txt