CVE-2007-5802

N/A Unknown
Published: November 03, 2007 Modified: April 23, 2026
View on NVD

Description

Directory traversal vulnerability in index.php in Firewolf Technologies Synergiser 1.2 RC1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: this can be leveraged to obtain the path by including a local PHP script with a duplicate function declaration.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://osvdb.org/38371
Source: cve@mitre.org
http://secunia.com/advisories/27466
Source: cve@mitre.org
http://securityreason.com/securityalert/3335
Source: cve@mitre.org
http://www.inj3ct-it.org/exploit/syner.txt
Source: cve@mitre.org
Exploit
http://www.securityfocus.com/archive/1/483099/100/0/threaded
Source: cve@mitre.org
http://www.securityfocus.com/bid/26289
Source: cve@mitre.org
Exploit
http://www.vupen.com/english/advisories/2007/3745
Source: cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/38217
Source: cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/38218
Source: cve@mitre.org
http://osvdb.org/38371
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/27466
Source: af854a3a-2127-422b-91ae-364da2661108
http://securityreason.com/securityalert/3335
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.inj3ct-it.org/exploit/syner.txt
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
http://www.securityfocus.com/archive/1/483099/100/0/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/26289
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
http://www.vupen.com/english/advisories/2007/3745
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/38217
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/38218
Source: af854a3a-2127-422b-91ae-364da2661108

18 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
3.9%
89th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-22

Affected Vendors

firewolf_technologies

Related CVEs

CVE-2026-9699 6.8
CVE-2026-57667 8.5
CVE-2026-57665 5.3
CVE-2026-57664 4.3
CVE-2026-57663 8.5