Description

CRLF injection vulnerability in the ftp_putcmd function in PHP before 4.4.7, and 5.x before 5.2.2 allows remote attackers to inject arbitrary FTP commands via CRLF sequences in the parameters to earlier FTP commands.

Remediation

References

CVE-2007-2509

Related Vulnerabilities

WordPress 'admin-ajax.php' SQL Injection Vulnerability (2.1.3)

WordPress Plugin CMS Tree Page View Cross-Site Scripting (1.2.31)

Oracle JRE CVE-2022-21549 Vulnerability (CVE-2022-21549)

WordPress Plugin Author Page Views Cross-Site Scripting (1.0)

WordPress Plugin Newsletter Cross-Site Scripting (6.7.6)

Severity

Low

Classification

CVE-2007-2509 CWE-20

Tags

Missing Update Known Vulnerabilities