Eval Injection Vulnerability in ADOdb Lite Affecting Various CMS Products
CVE-2007-5056

Currently unrated

Key Information:

Vendor

Adodb Lite

Status
Adodb Lite
SAPid Cmf
Pacercms
Open-realty
Vendor
CVE Published:
24 September 2007

What is CVE-2007-5056?

The eval injection vulnerability identified in ADOdb Lite version 1.42 and earlier allows attackers to execute arbitrary PHP code via manipulated input in the last_module parameter. This flaw is present in various content management systems, including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty. If exploited, it can lead to significant security breaches, providing unauthorized access and control over the affected systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/40395
vdb-entryx_refsource_XF
http://www.securityfocus.com/bid/25768
vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/40396
vdb-entryx_refsource_XF

EPSS Score

81% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.