CVE-2007-2751

Name of the Vulnerable Software and Affected Versions PHPGlossar version 0.8

Description The issue allows remote attackers to execute arbitrary PHP code. This can be achieved by providing a URL in the format menue parameter to specific API endpoints, such as "admin/inc/change action.php" or "admin/inc/add.php".

Recommendations For PHPGlossar version 0.8, consider restricting access to the admin/inc/change action.php and admin/inc/add.php endpoints to minimize the risk of exploitation. Avoid using the format menue parameter in these endpoints until the issue is resolved.