Vulnerabilities > CVE-2007-4413 - Remote Security vulnerability in Headstart Solutions Deskpro 3.0.2
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
headstart-solutions
Summary
Direct static code injection vulnerability in admincp/user_help.php in Headstart Solutions DeskPRO 3.0.2 allows remote authenticated users to inject arbitrary PHP code into an unspecified file via a new_entry value in the do parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |