CVE-2007-2501 Information

Description

Eval injection vulnerability in codepress.html in CodePress before 0.9.4 allows remote attackers to execute arbitrary code via certain input that is used in an eval function call.

Reference

http://codepress.sourceforge.net/changelog.php http://osvdb.org/36484 http://secunia.com/advisories/25124 http://sourceforge.net/project/shownotes.php?release_id=505510 http://www.securityfocus.com/bid/23788 http://www.vupen.com/english/advisories/2007/1638 https://exchange.xforce.ibmcloud.com/vulnerabilities/34055