Fixed isssue #19500: [security] As a non super admin, I can still acc…

…ess phpinfo page (#3801)

Co-authored-by: lapiudevgit <devgit@lapiu.biz>

application/controllers/admin/globalsettings.php

@@ -58,9 +58,10 @@ public function index()
      */
     public function showphpinfo()
     {
-        if (!Yii::app()->getConfig('demoMode')) {
-            phpinfo();
+        if (Yii::app()->getConfig('demoMode') || !Permission::model()->hasGlobalPermission('superadmin', 'read')) {
+            throw new CHttpException(403, gT("You do not have permission to access this page."));
         }
+        phpinfo();
     }
 
     /**