Vulnerability Database

311,377

Total vulnerabilities in the database

CVE-2007-5032

Cross-site request forgery (CSRF) vulnerability in admin.php in Francisco Burzi PHP-Nuke allows remote attackers to add administrative accounts via an AddAuthor action with modified add_name and add_radminsuper parameters.

  • Published: Sep 21, 2007
  • Updated: Nov 9, 2025
  • CVE: CVE-2007-5032
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5.1
  • AV:N/AC:H/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
francisco_burzi / php-nuke - 1.0.x
francisco_burzi / php-nuke - 7.4.x
francisco_burzi / php-nuke - 5.2a.x
francisco_burzi / php-nuke - 4.3.x
francisco_burzi / php-nuke - 6.7.x
francisco_burzi / php-nuke - 8.0_final.x
francisco_burzi / php-nuke - 6.0.x
francisco_burzi / php-nuke - 7.8.x
francisco_burzi / php-nuke - 5.6.x
francisco_burzi / php-nuke - 7.1.x
francisco_burzi / php-nuke - 7.2.x
francisco_burzi / php-nuke - 6.5_rc2.x
francisco_burzi / php-nuke - 4.4.1a.x
francisco_burzi / php-nuke - 5.2.x
francisco_burzi / php-nuke - 7.0_final.x
francisco_burzi / php-nuke - 6.5_final.x
francisco_burzi / php-nuke - 7.8_patched_3.2.x
francisco_burzi / php-nuke - 4.0.4.x
francisco_burzi / php-nuke - 7.5.x
francisco_burzi / php-nuke - 5.5.x
francisco_burzi / php-nuke - 6.9.x
francisco_burzi / php-nuke - 4.0.x
francisco_burzi / php-nuke - 7.3.x
francisco_burzi / php-nuke - 6.8.x
francisco_burzi / php-nuke - 5.0.x
francisco_burzi / php-nuke - 7.7.x
francisco_burzi / php-nuke - 2.5.x
francisco_burzi / php-nuke - 6.6.x
francisco_burzi / php-nuke - 6.5_beta1.x
francisco_burzi / php-nuke - 6.5_rc1.x
francisco_burzi / php-nuke - 3.0.x
francisco_burzi / php-nuke - 7.0.x
francisco_burzi / php-nuke - 6.5.x
francisco_burzi / php-nuke - 5.0.1.x
francisco_burzi / php-nuke - 7.9.x
francisco_burzi / php-nuke - 5.4.x
francisco_burzi / php-nuke - 6.5_rc3.x
francisco_burzi / php-nuke - 4.4.x
francisco_burzi / php-nuke - 7.6.x
francisco_burzi / php-nuke - 5.1.x
francisco_burzi / php-nuke - 5.3.1.x