Eval Injection Vulnerability in ADOdb Lite Affecting Various CMS Products
CVE-2007-5056

Currently unrated

Key Information:

Vendor: Adodb Lite
Status: Adodb Lite; SAPid Cmf; Pacercms; Open-realty
Vendor: CVE Published:; 24 September 2007

What is CVE-2007-5056?

The eval injection vulnerability identified in ADOdb Lite version 1.42 and earlier allows attackers to execute arbitrary PHP code via manipulated input in the last_module parameter. This flaw is present in various content management systems, including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty. If exploited, it can lead to significant security breaches, providing unauthorized access and control over the affected systems.