CVE-2007-5056 — MEDIUM (6.8)

Q: How severe is CVE-2007-5056?

CVE-2007-5056 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2007-5056?

Check the references section above for vendor advisories and patch information. Affected products include: Adodb Lite Adodb Lite, Cmsmadesimple Cms Made Simple, Journalness Journalness, Open-Realty Open-Realty, Pacercms Pacercms.

Vulnerability Description

Eval injection vulnerability in adodb-perf-module.inc.php in ADOdb Lite 1.42 and earlier, as used in products including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty, allows remote attackers to execute arbitrary code via PHP sequences in the last_module parameter.

CVSS Score

6.8

MEDIUM

AV:N/AC:M/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Adodb Lite	Adodb Lite	<= 1.42
Cmsmadesimple	Cms Made Simple	All versions
Journalness	Journalness	All versions
Open-Realty	Open-Realty	All versions
Pacercms	Pacercms	All versions
Sapid	Sapid Cmf	All versions

Related Weaknesses (CWE)

CWE-94

References

FAQ

What is CVE-2007-5056?

CVE-2007-5056 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Eval injection vulnerability in adodb-perf-module.inc.php in ADOdb Lite 1.42 and earlier, as used in products including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty, allows remot...

How severe is CVE-2007-5056?

CVE-2007-5056 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-5056?

Check the references section above for vendor advisories and patch information. Affected products include: Adodb Lite Adodb Lite, Cmsmadesimple Cms Made Simple, Journalness Journalness, Open-Realty Open-Realty, Pacercms Pacercms.