Lucene search
HistoryDec 22, 2011 - 3:29 p.m.
CVE-2011-4453
cve-2011-4453
pagelistsort
pmwiki
php
remote code execution
nvd
7.5 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.897 High
EPSS
Percentile
98.8%
The PageListSort function in scripts/pagelist.php in PmWiki 2.x before 2.2.35 allows remote attackers to execute arbitrary code via PHP sequences in a crafted order parameter in a pagelist directive, leading to unintended use of the PHP create_function function.
Related
prion
prion
Code injection
2011-12-22 15:29:00
dsquare
dsquare
PmWiki 2.2.34 RCE
2012-01-26 00:00:00
openvas
openvas
PmWiki 2.0.x < 2.2.35 PHP Code Injection Vulnerability - Active Check
2011-11-28 00:00:00
PmWiki Pagelist 'order' Parameter PHP Code Injection Vulnerability
2011-11-28 00:00:00
cvelist
cvelist
CVE-2011-4453
2022-10-03 16:15:13
packetstorm
packetstorm
PmWiki 2.2.34 Remote PHP Code Injection Exploit
2011-12-23 00:00:00
seebug
seebug
PmWiki <= 2.2.34 (pagelist) Remote PHP Code Injection Exploit
2011-11-24 00:00:00
PmWiki <= 2.2.34 (pagelist) Remote PHP Code Injection Exploit
2014-07-01 00:00:00
securityvulns
securityvulns
exploitpack
exploitpack
PmWiki 2.2.34 - pagelist Remote PHP Code Injection (1)
2011-11-23 00:00:00
exploitdb
exploitdb
PmWiki 2.2.34 - 'pagelist' Remote PHP Code Injection (1)
2011-11-23 00:00:00
7.5 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.897 High
EPSS
Percentile
98.8%
Related for CVE-2011-4453