CVE-2007-0930 Information

Description

Variable extract vulnerability in Apache Stats before 0.0.3beta allows attackers to modify arbitrary variables and conduct attacks via unknown vectors involving the use of PHP’s extract function.

Reference

http://sourceforge.net/forum/forum.php?forum_id=660919 http://www.securityfocus.com/bid/22388 http://www.vupen.com/english/advisories/2007/0559