Unrated severityNVD Advisory· Published Nov 3, 2007· Updated Apr 23, 2026

CVE-2007-5802

Description

Directory traversal vulnerability in index.php in Firewolf Technologies Synergiser 1.2 RC1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: this can be leveraged to obtain the path by including a local PHP script with a duplicate function declaration.

Affected products

Firewolf Technologies/Synergiser
cpe:2.3:a:firewolf_technologies:synergiser:*:*:*:*:*:*:*:*
Range: <=1.2_rc1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.inj3ct-it.org/exploit/syner.txtnvdExploit
www.securityfocus.com/bid/26289nvdExploit
osvdb.org/38371nvd
secunia.com/advisories/27466nvd
securityreason.com/securityalert/3335nvd
www.securityfocus.com/archive/1/483099/100/0/threadednvd
www.vupen.com/english/advisories/2007/3745nvd
exchange.xforce.ibmcloud.com/vulnerabilities/38217nvd
exchange.xforce.ibmcloud.com/vulnerabilities/38218nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.019
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000