Description
The eping_validaddr function in functions.php for the ePing plugin for e107 portal allows remote attackers to execute arbitrary commands via shell metacharacters after a valid argument to the eping_host parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin CopySafe PDF Protection Unspecified Vulnerability (1.10)
WordPress Plugin WordPress Landing Pages SQL Injection (1.2.1)
WordPress Plugin WooCommerce Open Redirect (3.7.0)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0124)
WordPress Plugin UpiCRM-Free WordPress CRM and Lead Management Information Disclosure (2.1.8.5)