Description

The eTrace_validaddr function in eTrace plugin for e107 portal allows remote attackers to execute arbitrary commands via shell metacharacters after a valid argument to the etrace_host parameter.

Remediation

References

CVE-2005-1966

Related Vulnerabilities

Jenkins Improper Authentication Vulnerability (CVE-2014-2062)

Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2021-3629)

Moodle CVE-2021-40695 Vulnerability (CVE-2021-40695)

Drupal Improper Input Validation Vulnerability (CVE-2013-6389)

WordPress Plugin iPanorama 360 WordPress Virtual Tour Builder Cross-Site Scripting (1.6.21)

Severity

High

Classification

CVE-2005-1966

Tags

Missing Update Known Vulnerabilities