12 matches found
CVE-2018-1000885
PHKP version including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b contains a Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in function pgpexec phkp.php:98 that can result in It is possible to manipulate gpg-keys or execute commands remotely...
EUVD-2019-1924
Malware in sbrugna...
CVE-2019-1010179
PHKP including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b is affected by: Improper Neutralization of Special Elements used in a Command 'Command Injection'. The impact is: It is possible to manipulate gpg-keys or execute commands remotely. The component is: function pgpexec phkp.php:98. The...
PHKP 'pgp_exec()' function command injection vulnerability
PHKP is a PHP-based implementation of the OpenPGP HTTP secret key server protocol. A command injection vulnerability exists in the 'pgpexec' function of the phkp.php file in PHKP. The vulnerability stems from a network system or product not properly filtering special elements of externally entere...
CVE-2019-1010179
PHKP including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b is affected by: Improper Neutralization of Special Elements used in a Command 'Command Injection'. The impact is: It is possible to manipulate gpg-keys or execute commands remotely. The component is: function pgpexec phkp.php:98. The...
Command injection
PHKP including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b is affected by: Improper Neutralization of Special Elements used in a Command 'Command Injection'. The impact is: It is possible to manipulate gpg-keys or execute commands remotely. The component is: function pgpexec phkp.php:98. The...
CVE-2019-1010179
PHKP including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b is affected by: Improper Neutralization of Special Elements used in a Command 'Command Injection'. The impact is: It is possible to manipulate gpg-keys or execute commands remotely. The component is: function pgpexec phkp.php:98. The...
CVE-2019-1010179
PHKP (PHP OpenPGP HTTP secret key server protocol) is affected by a Command Injection in the pgp_exec() function of phkp.php:98. The issue stems from improper neutralization of special elements when constructing commands, enabling a remote attacker to manipulate gpg-keys or execute arbitrary comm...
Command injection
PHKP version including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b contains a Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in function pgpexec phkp.php:98 that can result in It is possible to manipulate gpg-keys or execute commands remotely...
CVE-2018-1000885
PHKP version including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b contains a Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in function pgpexec phkp.php:98 that can result in It is possible to manipulate gpg-keys or execute commands remotely...
CVE-2018-1000885
PHKP version including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b contains a Command Injection vulnerability in function pgp_exec() phkp.php:98. The flaw potentially allows remote command execution or manipulation of gpg-keys, and is exploitable via the HKP-Api endpoint /pks/lookup?search. A...
CVE-2018-1000885
PHKP version including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b contains a Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability in function pgpexec phkp.php:98 that can result in It is possible to manipulate gpg-keys or execute commands remotely...