VYPR
Unrated severityNVD Advisory· Published Oct 5, 2007· Updated Jun 16, 2026

CVE-2007-5223

CVE-2007-5223

Description

Multiple unspecified vulnerabilities in AlstraSoft Affiliate Network Pro allow remote attackers to include local files and have other unspecified impact, related to incorrect input validation or other defects involving (1) admin/backupstart.php, (2) a .sql filename under admin/admin/dump/, (3) a .sql filename in the fl parameter to admin/downloadbackup.php, and (4) a .. (dot dot) in the fl parameter to admin/downloadbackup.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:alstrasoft:affiliate_network_pro:8.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:alstrasoft:affiliate_network_pro:8.0:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.