Description
The eping_validaddr function in functions.php for the ePing plugin for e107 portal allows remote attackers to execute arbitrary commands via shell metacharacters after a valid argument to the eping_host parameter.
Remediation
References
Related Vulnerabilities
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2049)
WordPress Plugin GEO Redirector Cross-Site Scripting (1.0.1)
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-35152)
Apache Tomcat version older than 6.0.14
WordPress Plugin Pressbooks Textbook Cross-Site Scripting (1.2.5)