CVE-2007-5984

CVE-2007-5984 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

classes/Url.php in Justin Hagstrom AutoIndex PHP Script before 2.2.4 allows remote attackers to cause a denial of service (CPU and memory consumption) via a %00 sequence in the dir parameter to index.php, which triggers an erroneous "recursive calculation."

Learn more about our Web Application Penetration Testing UK.