Description

The eping_validaddr function in functions.php for the ePing plugin for e107 portal allows remote attackers to execute arbitrary commands via shell metacharacters after a valid argument to the eping_host parameter.

Remediation

References

CVE-2005-1949

Related Vulnerabilities

LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-16397)

WordPress Plugin RentPress Cross-Site Scripting (6.6.4)

WordPress Plugin Flickr Justified Gallery Cross-Site Scripting (3.3.6)

Oracle JRE CVE-2024-20955 Vulnerability (CVE-2024-20955)

Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3724)

Severity

High

Classification

CVE-2005-1949

Tags

Missing Update Known Vulnerabilities