NVD

Id
56538  
Name
CVE-2007-4413  
Description
Direct static code injection vulnerability in admincp/user_help.php in Headstart Solutions DeskPRO 3.0.2 allows remote authenticated users to inject arbitrary PHP code into an unspecified file via a new_entry value in the do parameter.  
Reject
 
CVSS Version
2  
CVSS Score
3.5  
Severity
Low  
CVSS Base Score
3.5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2007-08-18  
Modified Date
2008-11-15  
Seq
2007-4413  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
288055 56538 CVE-2007-4413 3029  View
288056 56538 CVE-2007-4413 20070814 DeskPRO Admin Panel Multiple HTML Injections  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
55606 JVNDB-2007-004298 Headstart Solutions の DeskPRO における任意の PHP コードを挿入される脆弱性 Headstart Solutions の DeskPRO の admincp/user_help.php は、直接静的コードを挿入されることにより、任意の PHP コードを挿入される脆弱性が存在します。 CVE-2007-4413 27768 CVE-2007-4413 56538 3.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004298.html 2007-08-18 2012-09-25 View