VYPR
Unrated severityNVD Advisory· Published Nov 24, 2005· Updated Jun 16, 2026

CVE-2005-3796

CVE-2005-3796

Description

Direct static code injection vulnerability in admin_options_manage.php in AlstraSoft Affiliate Network Pro 7.2 allows attackers to execute arbitrary PHP code via the number parameter. NOTE: it is not clear from the original report whether administrator privileges are required. If not, then this does not cross privilege boundaries and is not a vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:alstrasoft:affiliate_network_pro:7.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:alstrasoft:affiliate_network_pro:7.2:*:*:*:*:*:*:*
    • (no CPE)range: 7.2

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.