Unrated severityNVD Advisory· Published Jan 25, 2007· Updated Apr 23, 2026
CVE-2007-0497
CVE-2007-0497
Description
PHP remote file inclusion vulnerability in upload/top.php in Upload-Service 1.0, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the maindir parameter.
Affected products
1- cpe:2.3:a:upload-service:upload-service:1.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7News mentions
0No linked articles in our index yet.