CVE-2007-5409 in NuSEO PHP Enterpriseinfo

Summary

PHP remote file inclusion vulnerability in admin/nuseo_admin_d.php in NuSEO PHP Enterprise 1.6 (NuSEO.PHP), when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the nuseo_dir parameter.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

10/12/2007

Disclosure

10/12/2007

CPE

ready

Exploit

Download

CVSS

7.3

EPSS

0.03707

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2007-5409
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2007-5409
CVE Detailshttps://www.cvedetails.com/cve/CVE-2007-5409/

PreviousOverviewNext

Want to know what is going to be exploited?

We predict KEV entries!