Secunia
Login
|
|
CVE Reference: CVE-2007-5453 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-5453 |
|
|
Description: Multiple eval injection vulnerabilities in Php-Stats 0.1.9.2 allow remote authenticated administrators to execute arbitrary code by writing PHP sequences to the php-stats-options record in the _options table, which is used in an eval function call by (1) admin.php, (2) click.php, (3) download.php, and unspecified other files, as demonstrated by modifying _options through a backup restore action in admin.php. |
|
|
CVE Status: Candidate |
|
|
References: OSVDB 43480 MILW0RM http://www.milw0rm.com/exploits/4513 BID 26022 |
|
| Return to the previous page. |
