13 matches found
EUVD-2005-2560
Malware in sbrugna...
EUVD-2005-1951
Malware in sbrugna...
CVE-2005-2559
doping.php in ePing plugin 1.02 and earlier for e107 portal allows remote attackers to execute arbitrary code or overwrite files via 1 shell metacharacters in the epingcount parameter or 2 restricted shell metacharacters such as "" and "&" in the epinghost parameter, which is not handled by the...
CVE-2005-2559
doping.php in ePing plugin 1.02 and earlier for e107 portal allows remote attackers to execute arbitrary code or overwrite files via 1 shell metacharacters in the epingcount parameter or 2 restricted shell metacharacters such as "" and "&" in the epinghost parameter, which is not handled by the...
CVE-2005-2559
CVE-2005-2559 affects the e107 web portal’s ePing plugin (versions 1.02 and earlier). The vulnerability arises from improper handling/validation of the eping_count and eping_host parameters in doping.php, allowing shell metacharacters to be injected and used in system() calls. Consequence: remote...
PT-2005-3450 · E107 · E107 Eping Plugin
Name of the Vulnerable Software and Affected Versions: e107 ePing plugin versions 1.02 and earlier Description: The issue allows remote attackers to execute arbitrary code or overwrite files. This can be achieved through shell metacharacters in the eping count parameter or restricted shell...
eping.txt
www.RedC0de.org found the following error in eping: Details ------- Advisory name: Arbitrary code execution in eping plugin Advisory number: 1 Application: eping Aplication author: apnovi3 Security-Risk: high - very high Remote-Exploit: Yes Discovered by: m00fd1 aka Tr|p Introduction ------------...
CVE-2005-1949
The epingvalidaddr function in functions.php for the ePing plugin for e107 portal allows remote attackers to execute arbitrary commands via shell metacharacters after a valid argument to the epinghost parameter...
CVE-2005-1949
The epingvalidaddr function in functions.php for the ePing plugin for e107 portal allows remote attackers to execute arbitrary commands via shell metacharacters after a valid argument to the epinghost parameter...
CVE-2005-1949
The CVE-2005-1949 entry refers to the ePing plugin for the e107 portal, where the eping_validaddr function in functions.php allows remote attackers to execute arbitrary commands via shell metacharacters after a valid eping_host argument. Exploitation details are described in the PT-2005-2900 and ...
PT-2005-2900 · E107 · Eping Plugin
Name of the Vulnerable Software and Affected Versions: ePing plugin for e107 portal affected versions not specified Description: The issue allows remote attackers to execute arbitrary commands via shell metacharacters after a valid argument to the eping host parameter in the eping validaddr...
Arbitrary code execution in eping plugin
www.RedC0de.org found the following error in eping: Details ------- Advisory name: Arbitrary code execution in eping plugin Advisory number: 1 Application: eping Aplication author: apnovi3 Security-Risk: high - very high Remote-Exploit: Yes Discovered by: m00fd1 aka Tr|p Introduction ------------...
e107 ePing Plugin doping.php Arbitrary Code Execution
The installation of e107 on the remote host includes a version of the ePing plugin that is affected by a command execution vulnerability. This plugin fails to sanitize the 'epingcmd', 'epingcount' and/or 'epinghost' parameters of the 'doping.php' script before using them in a system call. An...