CVE-2007-5840 in SyndeoCMSinfo

Summary

PHP remote file inclusion vulnerability in starnet/themes/c-sky/main.inc.php in Fred Stuurman SyndeoCMS 2.5.01 allows remote attackers to execute arbitrary PHP code via a URL in the cmsdir parameter, a different vector than CVE-2006-4920.2.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

11/06/2007

Disclosure

11/06/2007

Moderation

VulDB entry created

Entries

1: VDB-39589

CPE

ready

CWE

CWE-94 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.06554

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-5840
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-5840
CVE Details	https://www.cvedetails.com/cve/CVE-2007-5840/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!