Unrated severityNVD Advisory· Published Nov 3, 2007· Updated Jun 16, 2026
CVE-2007-5802
CVE-2007-5802
Description
Directory traversal vulnerability in index.php in Firewolf Technologies Synergiser 1.2 RC1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: this can be leveraged to obtain the path by including a local PHP script with a duplicate function declaration.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:firewolf_technologies:synergiser:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:firewolf_technologies:synergiser:*:*:*:*:*:*:*:*range: <=1.2_rc1
- (no CPE)range: <=1.2 RC1
Patches
Vulnerability mechanics
References
9- www.inj3ct-it.org/exploit/syner.txtnvdExploit
- www.securityfocus.com/bid/26289nvdExploit
- osvdb.org/38371nvd
- secunia.com/advisories/27466nvd
- securityreason.com/securityalert/3335nvd
- www.securityfocus.com/archive/1/483099/100/0/threadednvd
- www.vupen.com/english/advisories/2007/3745nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/38217nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/38218nvd
News mentions
0No linked articles in our index yet.