CVE-2007-0599 in Foruminfo

Summary

Variable overwrite vulnerability in common/config.php in Aztek Forum 4.00 allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as copying arbitrary files using index/common_actions.php, via vectors associated with extract operations on the (1) POST, (2) GET, (3) COOKIE, and (4) SERVER superglobal arrays.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

01/30/2007

Disclosure

01/30/2007

Moderation

VulDB entry created

Entries

VDB-34725 (1)

CPE

ready

CWE

CWE-285 (Unconfirmed)

CVSS

7.3

EPSS

0.00888

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0599
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0599
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0599/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!