Description

The eping_validaddr function in functions.php for the ePing plugin for e107 portal allows remote attackers to execute arbitrary commands via shell metacharacters after a valid argument to the eping_host parameter.

Remediation

References

CVE-2005-1949

Related Vulnerabilities

WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Multiple Vulnerabilities (3.1.1)

Microsoft SQL Server Other Vulnerability (CVE-2001-0542)

IBM WebSEAL CVE-2018-1722 Vulnerability (CVE-2018-1722)

WordPress Plugin Advanced Forms for ACF Security Bypass (1.6.8)

Atlassian Jira Server-Side Request Forgery (SSRF) Vulnerability (CVE-2017-16865)

Severity

High

Classification

CVE-2005-1949

Tags

Missing Update Known Vulnerabilities