CVE-2007-5440 in CRS Managerinformation

Résumé (Anglaise)

** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in CRS Manager allow remote attackers to execute arbitrary PHP code via a URL in the DOCUMENT_ROOT parameter to (1) index.php or (2) login.php. NOTE: this issue is disputed by CVE, since DOCUMENT_ROOT cannot be modified by an attacker.

Réserver

14/10/2007

Divulgation

14/10/2007

Entrées

VulDB provides additional information and datapoints for this CVE:

IDVulnérabilitéCWEExpConCVE
39247CRS Manager index.php élévation de privilèges20Preuve de conceptNon définiCVE-2007-5440

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

PrécédentAperçuSuivant

Do you need the next level of professionalism?

Upgrade your account now!