CVE-2007-0862

Name of the Vulnerable Software and Affected Versions: gnopaste versions 0.5.3 and earlier

Description: The issue allows remote attackers to execute arbitrary PHP code via the GNP REAL PATH parameter in the index.php file. However, it is noted that GNP REAL PATH is a constant, not a variable, which is disputed by a third party.

Recommendations: For gnopaste versions 0.5.3 and earlier, consider restricting access to the index.php file until a resolution is found. As a temporary workaround, avoid using the GNP REAL PATH parameter in the affected file. At the moment, there is no information about a newer version that contains a fix for this vulnerability.