Lucene search
FreeBSD523FAD14-EB9D-11D9-A8BD-000CF18BBE54HistoryJun 29, 2005 - 12:00 a.m.
pear-XML_RPC -- arbitrary remote code execution
2005-06-2900:00:00
vuxml.freebsd.org
24
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.959 High
EPSS
Percentile
99.4%
GulfTech Security Research Team reports:
PEAR XML_RPC is vulnerable to a very high risk php code
injection vulnerability due to unsanatized data being
passed into an eval() call.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | pear-xml_rpc | < 1.3.1 | UNKNOWN |
Related
nessus
nessus
GLSA-200507-15 : PHP: Script injection through XML-RPC
2005-07-16 00:00:00
Ubuntu 4.10 / 5.04 : php4, php4-universe vulnerability (USN-147-1)
2006-01-15 00:00:00
GLSA-200507-02 : WordPress: Multiple vulnerabilities
2005-07-05 00:00:00
securityvulns
securityvulns
[Full-disclosure] [ GLSA 200507-06 ] TikiWiki: Arbitrary command execution through XML-RPC
2005-07-07 00:00:00
Advisory 02/2005: Remote code execution in Serendipity
2005-06-30 00:00:00
Advisory 02/2005: Remote code execution in Serendipity
2005-07-01 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200507-06 (Tikiwiki)
2008-09-24 00:00:00
Debian: Security Advisory (DSA-746-1)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200507-02 (wordpress)
2008-09-24 00:00:00
ubuntucve
ubuntucve
CVE-2005-1921
2005-07-05 00:00:00
CVE-2005-2498
2005-08-15 00:00:00
gentoo
gentoo
WordPress: Multiple vulnerabilities
2005-07-04 00:00:00
PEAR XML-RPC, phpxmlrpc: PHP script injection vulnerability
2005-07-03 00:00:00
TikiWiki: Arbitrary command execution through XML-RPC
2005-07-06 00:00:00
packetstorm
packetstorm
PHP XML-RPC Arbitrary Code Execution
2009-10-30 00:00:00
patchstack
patchstack
WordPress <= 1.3.0 - Eval Injection
2005-06-08 00:00:00
slackware
slackware
PHP
2005-07-11 17:25:23
debian
debian
checkpoint_advisories
checkpoint_advisories
LupperA XMLRPC Propagation Request Code Execution - Ver2 (CVE-2005-1921)
2015-03-26 00:00:00
suse
suse
remote code execution in php/pear XML::RPC
2005-07-08 15:32:35
remote code execution in php4, php5
2005-08-30 14:35:22
local command execution, authentication bypass, in apache2
2005-09-12 13:00:50
wpvulndb
wpvulndb
WordPress <= 1.5.1.2 - XMLRPC Eval Injection
2005-06-29 00:00:00
exploitpack
exploitpack
PHPXMLRPC 1.1 - Remote Code Execution
2015-07-02 00:00:00
ubuntu
ubuntu
PHP XMLRPC vulnerability
2005-07-05 00:00:00
cert
cert
Multiple PHP XML-RPC implementations vulnerable to code injection
2005-07-06 00:00:00
cve
cve
exploitdb
exploitdb
PHPXMLRPC < 1.1 - Remote Code Execution
2015-07-02 00:00:00
centos
centos
php security update
2005-07-07 20:36:04
freebsd
freebsd
drupal -- PHP code execution vulnerabilities
2005-06-29 00:00:00
postnuke -- multiple vulnerabilities
2005-05-27 00:00:00
redhat
redhat
(RHSA-2005:564) php security update
2005-07-07 00:00:00
osv
osv
drupal - arbitrary command execution
2005-07-10 00:00:00
php4 - several
2005-08-29 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.959 High
EPSS
Percentile
99.4%
Related for 523FAD14-EB9D-11D9-A8BD-000CF18BBE54