Lucene search

[email protected]NVD:CVE-2011-4453

HistoryDec 22, 2011 - 3:29 p.m.

CVE-2011-4453

2011-12-2215:29:20

CWE-94

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.901 High

EPSS

Percentile

98.8%

JSON

The PageListSort function in scripts/pagelist.php in PmWiki 2.x before 2.2.35 allows remote attackers to execute arbitrary code via PHP sequences in a crafted order parameter in a pagelist directive, leading to unintended use of the PHP create_function function.

Affected configurations

NVD

Node

pmwikipmwikiMatch2.0.0

pmwikipmwikiMatch2.0.1

pmwikipmwikiMatch2.0.2

pmwikipmwikiMatch2.0.3

pmwikipmwikiMatch2.0.4

pmwikipmwikiMatch2.0.5

pmwikipmwikiMatch2.0.6

pmwikipmwikiMatch2.0.7

pmwikipmwikiMatch2.0.8

pmwikipmwikiMatch2.0.9

pmwikipmwikiMatch2.0.10

pmwikipmwikiMatch2.0.11

pmwikipmwikiMatch2.0.12

pmwikipmwikiMatch2.0.13

pmwikipmwikiMatch2.1.0

pmwikipmwikiMatch2.1.1

pmwikipmwikiMatch2.1.2

pmwikipmwikiMatch2.1.3

pmwikipmwikiMatch2.1.4

pmwikipmwikiMatch2.1.5

pmwikipmwikiMatch2.1.6

pmwikipmwikiMatch2.1.7

pmwikipmwikiMatch2.1.8

pmwikipmwikiMatch2.1.9

pmwikipmwikiMatch2.1.10

pmwikipmwikiMatch2.1.11

pmwikipmwikiMatch2.1.12

pmwikipmwikiMatch2.1.13

pmwikipmwikiMatch2.1.14

pmwikipmwikiMatch2.1.15

pmwikipmwikiMatch2.1.16

pmwikipmwikiMatch2.1.17

pmwikipmwikiMatch2.1.18

pmwikipmwikiMatch2.1.19

pmwikipmwikiMatch2.1.20

pmwikipmwikiMatch2.1.21

pmwikipmwikiMatch2.1.22

pmwikipmwikiMatch2.1.23

pmwikipmwikiMatch2.1.24

pmwikipmwikiMatch2.1.25

pmwikipmwikiMatch2.1.26

pmwikipmwikiMatch2.1.27

pmwikipmwikiMatch2.2.0

pmwikipmwikiMatch2.2.0beta1

pmwikipmwikiMatch2.2.0beta10

pmwikipmwikiMatch2.2.0beta11

pmwikipmwikiMatch2.2.0beta12

pmwikipmwikiMatch2.2.0beta13

pmwikipmwikiMatch2.2.0beta14

pmwikipmwikiMatch2.2.0beta15

pmwikipmwikiMatch2.2.0beta16

pmwikipmwikiMatch2.2.0beta17

pmwikipmwikiMatch2.2.0beta18

pmwikipmwikiMatch2.2.0beta19

pmwikipmwikiMatch2.2.0beta2

pmwikipmwikiMatch2.2.0beta20

pmwikipmwikiMatch2.2.0beta21

pmwikipmwikiMatch2.2.0beta22

pmwikipmwikiMatch2.2.0beta23

pmwikipmwikiMatch2.2.0beta24

pmwikipmwikiMatch2.2.0beta25

pmwikipmwikiMatch2.2.0beta26

pmwikipmwikiMatch2.2.0beta27

pmwikipmwikiMatch2.2.0beta28

pmwikipmwikiMatch2.2.0beta29

pmwikipmwikiMatch2.2.0beta3

pmwikipmwikiMatch2.2.0beta30

pmwikipmwikiMatch2.2.0beta31

pmwikipmwikiMatch2.2.0beta32

pmwikipmwikiMatch2.2.0beta33

pmwikipmwikiMatch2.2.0beta34

pmwikipmwikiMatch2.2.0beta35

pmwikipmwikiMatch2.2.0beta36

pmwikipmwikiMatch2.2.0beta37

pmwikipmwikiMatch2.2.0beta38

pmwikipmwikiMatch2.2.0beta39

pmwikipmwikiMatch2.2.0beta4

pmwikipmwikiMatch2.2.0beta40

pmwikipmwikiMatch2.2.0beta41

pmwikipmwikiMatch2.2.0beta42

pmwikipmwikiMatch2.2.0beta43

pmwikipmwikiMatch2.2.0beta44

pmwikipmwikiMatch2.2.0beta45

pmwikipmwikiMatch2.2.0beta46

pmwikipmwikiMatch2.2.0beta47

pmwikipmwikiMatch2.2.0beta48

pmwikipmwikiMatch2.2.0beta49

pmwikipmwikiMatch2.2.0beta5

pmwikipmwikiMatch2.2.0beta50

pmwikipmwikiMatch2.2.0beta51

pmwikipmwikiMatch2.2.0beta52

pmwikipmwikiMatch2.2.0beta53

pmwikipmwikiMatch2.2.0beta54

pmwikipmwikiMatch2.2.0beta55

pmwikipmwikiMatch2.2.0beta56

pmwikipmwikiMatch2.2.0beta57

pmwikipmwikiMatch2.2.0beta58

pmwikipmwikiMatch2.2.0beta59

pmwikipmwikiMatch2.2.0beta6

pmwikipmwikiMatch2.2.0beta60

pmwikipmwikiMatch2.2.0beta61

pmwikipmwikiMatch2.2.0beta62

pmwikipmwikiMatch2.2.0beta63

pmwikipmwikiMatch2.2.0beta64

pmwikipmwikiMatch2.2.0beta65

pmwikipmwikiMatch2.2.0beta66

pmwikipmwikiMatch2.2.0beta67

pmwikipmwikiMatch2.2.0beta68

pmwikipmwikiMatch2.2.0beta7

pmwikipmwikiMatch2.2.0beta8

pmwikipmwikiMatch2.2.0beta9

pmwikipmwikiMatch2.2.1

pmwikipmwikiMatch2.2.2

pmwikipmwikiMatch2.2.3

pmwikipmwikiMatch2.2.4

pmwikipmwikiMatch2.2.5

pmwikipmwikiMatch2.2.6

pmwikipmwikiMatch2.2.7

pmwikipmwikiMatch2.2.8

pmwikipmwikiMatch2.2.9

pmwikipmwikiMatch2.2.10

pmwikipmwikiMatch2.2.11

pmwikipmwikiMatch2.2.12

pmwikipmwikiMatch2.2.13

pmwikipmwikiMatch2.2.14

pmwikipmwikiMatch2.2.15

pmwikipmwikiMatch2.2.16

pmwikipmwikiMatch2.2.17

pmwikipmwikiMatch2.2.18

pmwikipmwikiMatch2.2.19

pmwikipmwikiMatch2.2.20

pmwikipmwikiMatch2.2.21

pmwikipmwikiMatch2.2.22

pmwikipmwikiMatch2.2.23

pmwikipmwikiMatch2.2.24

pmwikipmwikiMatch2.2.25

pmwikipmwikiMatch2.2.26

pmwikipmwikiMatch2.2.27

pmwikipmwikiMatch2.2.28

pmwikipmwikiMatch2.2.29

pmwikipmwikiMatch2.2.30

pmwikipmwikiMatch2.2.32

pmwikipmwikiMatch2.2.33

pmwikipmwikiMatch2.2.34

References

www.exploit-db.com/exploits/18149/

www.exploit-db.com/exploits/18243/

www.pmwiki.org/wiki/PITS/01271

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.901 High

EPSS

Percentile

98.8%

JSON

Related for NVD:CVE-2011-4453

exploitpack1 openvas2 seebug2 dsquare1 prion1 cvelist1 packetstorm1 cve1 securityvulns1 exploitdb1