Unrated severityNVD Advisory· Published Dec 28, 2007· Updated Apr 23, 2026

CVE-2007-6550

Description

form.php in PMOS Help Desk 2.4 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to conduct eval injection attacks and execute arbitrary PHP code via the options array parameter.

Affected products

Pmos Helpdesk/Pmos Helpdesk
cpe:2.3:a:pmos_helpdesk:pmos_helpdesk:*:*:*:*:*:*:*:*
Range: <=2.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

osvdb.org/42662nvd
secunia.com/advisories/28201nvd
www.securityfocus.com/bid/27032nvd
www.vupen.com/english/advisories/2007/4321nvd
exchange.xforce.ibmcloud.com/vulnerabilities/39274nvd
www.exploit-db.com/exploits/4789nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000