CVE-2007-5772
CVE-2007-5772 describes a direct static code injection in the Flatnuke 3 download module. The vulnerability allows remote authenticated administrators to inject arbitrary PHP code into a file named description.it.php under a subdirectory of Download/ by saving a description and setting fneditmode...