VYPR
Unrated severityNVD Advisory· Published Jan 30, 2007· Updated Jun 16, 2026

CVE-2007-0599

CVE-2007-0599

Description

Variable overwrite vulnerability in common/config.php in Aztek Forum 4.00 allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as copying arbitrary files using index/common_actions.php, via vectors associated with extract operations on the (1) POST, (2) GET, (3) COOKIE, and (4) SERVER superglobal arrays.

Affected products

2
  • Aztek Forum/Forum2 versions
    cpe:2.3:a:aztek_forum:aztek_forum:4.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:aztek_forum:aztek_forum:4.0:*:*:*:*:*:*:*
    • (no CPE)range: =4.00

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.