Eval injection vulnerability in adodb-perf-module.inc.php in ADOdb Lite 1.42 and earlier, as used in products including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty, allows remote attackers to execute arbitrary code via PHP sequences in the last_module parameter.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2007-09-24 22:17
Updated : 2024-02-28 11:01
NVD link : CVE-2007-5056
Mitre link : CVE-2007-5056
CVE.ORG link : CVE-2007-5056
JSON object : View
Products Affected
pacercms
- pacercms
cmsmadesimple
- cms_made_simple
open-realty
- open-realty
journalness
- journalness
sapid
- sapid_cmf
adodb_lite
- adodb_lite
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')