Lucene search
K

1127 matches found

securityvulns
securityvulns
added 2005/07/07 12:0 a.m.69 views

[Full-disclosure] [ GLSA 200507-06 ] TikiWiki: Arbitrary command execution through XML-RPC

Gentoo Linux Security Advisory GLSA 200507-06 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...

7.5CVSS0.4AI score0.79071EPSS
Exploits5
Gentoo Linux
Gentoo Linux
added 2005/07/06 12:0 a.m.69 views

TikiWiki: Arbitrary command execution through XML-RPC

Background TikiWiki is a web-based groupware and content management system CMS, using PHP, ADOdb and Smarty. TikiWiki includes vulnerable PHP XML-RPC code. Description TikiWiki is vulnerable to arbitrary command execution as described in GLSA 200507-01. Impact A remote attacker could exploit this...

7.5CVSS7.4AI score0.79071EPSS
Exploits5
CERT
CERT
added 2005/07/06 12:0 a.m.54 views

Multiple PHP XML-RPC implementations vulnerable to code injection

Overview A vulnerability in a common PHP extension module could allow a remote attacker to execute code on a vulnerable system. Description XML-RPC is a specification and a set of implementations that allow software running on disparate operating systems and in different environments to make...

7.5CVSS6.6AI score0.79071EPSS
Exploits5References16
NVD
NVD
added 2005/07/05 4:0 a.m.24 views

CVE-2005-1921

Eval injection vulnerability in PEAR XMLRPC 1.3.0 and earlier aka XML-RPC or xmlrpc and PHPXMLRPC aka XML-RPC For PHP or php-xmlrpc 1.1 and earlier, as used in products such as 1 WordPress, 2 Serendipity, 3 Drupal, 4 egroupware, 5 MailWatch, 6 TikiWiki, 7 phpWebSite, 8 Ampache, and others, allows...

7.5CVSS7.6AI score0.79071EPSS
Exploits5References50
Tenable Nessus
Tenable Nessus
added 2005/07/05 12:0 a.m.64 views

GLSA-200507-01 : PEAR XML-RPC, phpxmlrpc: PHP script injection vulnerability

The remote host is affected by the vulnerability described in GLSA-200507-01 PEAR XML-RPC, phpxmlrpc: PHP script injection vulnerability James Bercegay of GulfTech Security Research discovered that the PEAR XML-RPC and phpxmlrpc libraries fail to sanatize input sent using the 'POST' method. Impac...

7.5CVSS6AI score0.79071EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2005/07/05 12:0 a.m.55 views

GLSA-200507-02 : WordPress: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200507-02 WordPress: Multiple vulnerabilities James Bercegay of the GulfTech Security Research Team discovered that WordPress insufficiently checks data passed to the XML-RPC server. He also discovered that WordPress has several...

7.5CVSS5.9AI score0.79071EPSS
Exploits5References3
securityvulns
securityvulns
added 2005/07/04 12:0 a.m.26 views

[SA15916] eGroupWare XML-RPC PHP Code Execution Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.8AI score
Exploits0
0day.today
0day.today
added 2005/07/04 12:0 a.m.97 views

xmlrpc.php Library <= 1.3.0 Remote Command Execute Exploit (3)

Exploit for unknown platform in category web applications ============================================================== xmlrpc.php Library agent"Internet Explorer 6.0"; $host = $ARGV0; if !$host die"Usage: xmlrpcexec.pl http://pathto/xmlrpcserver"; while $host print "xmlrpc@"; $exec = ; $data =...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2005/07/04 12:0 a.m.14 views

XML-RPC Library 1.3.0 - xmlrpc.php Remote Command Execution (3)

XML-RPC Library 1.3.0 - xmlrpc.php Remote Command Execution 3 !/usr/bin/perl -w XML-RPC Remote Command Execution Exploit By Mike Rifone This works on da phpxmlrpc, and da PEAR XMLRPC too! All you need is to put the url to the server and u get shell Dis is my first exploit but hey it works :D...

0.6AI score
Exploits0
seebug.org
seebug.org
added 2005/07/04 12:0 a.m.14 views

xmlrpc.php Library &lt;= 1.3.0 Remote Command Execute Exploit (3)

No description provided by source. !/usr/bin/perl -w XML-RPC Remote Command Execution Exploit By Mike Rifone This works on da phpxmlrpc, and da PEAR XMLRPC too! All you need is to put the url to the server and u get shell Dis is my first exploit but hey it works :D Mike@Rifone use LWP::UserAgent;...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2005/07/04 12:0 a.m.26 views

[SA15903] PhpWiki XML-RPC PHP Code Execution Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2005/07/04 12:0 a.m.57 views

[SA15904] BLOG:CMS XML-RPC PHP Code Execution Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.4AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2005/07/04 12:0 a.m.42 views

WordPress: Multiple vulnerabilities

Background WordPress is a PHP and MySQL based content management and publishing system. Description James Bercegay of the GulfTech Security Research Team discovered that WordPress insufficiently checks data passed to the XML-RPC server. He also discovered that WordPress has several cross-site...

7.5CVSS7AI score0.79071EPSS
Exploits5
securityvulns
securityvulns
added 2005/07/04 12:0 a.m.33 views

[SA15917] phpGroupWare XML-RPC PHP Code Execution Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.5AI score
Exploits0
Exploit DB
Exploit DB
added 2005/07/04 12:0 a.m.45 views

XML-RPC Library 1.3.0 - &#039;xmlrpc.php&#039; Remote Command Execution (3)

!/usr/bin/perl -w XML-RPC Remote Command Execution Exploit By Mike Rifone This works on da phpxmlrpc, and da PEAR XMLRPC too! All you need is to put the url to the server and u get shell Dis is my first exploit but hey it works :D Mike@Rifone use LWP::UserAgent; $brws = new LWP::UserAgent;...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/07/04 12:0 a.m.163 views

XML-RPC Library 1.3.0 - &#039;xmlrpc.php&#039; Remote Command Execution (2)

------------------------------------------------------- /| | | | | /\ | | / \ \ / / |\ | | / /\ \ \ | | / | | | || \ || | | | / /\ | \ || | / | | | ||/ || | || / \ | || || | / | | | || \ || | | / / \ \ | || || | / | | ||| || | | / |/ | || || | | | | || /| | | | | ||/| | ||/ | | | ||| | |...

7.4AI score
Exploits0
OSV
OSV
added 2005/07/04 12:0 a.m.39 views

DSA-840-1 drupal - missing input sanitising

Bulletin has no description...

7.5CVSS9.3AI score0.05091EPSS
Exploits0
Gentoo Linux
Gentoo Linux
added 2005/07/03 12:0 a.m.39 views

PEAR XML-RPC, phpxmlrpc: PHP script injection vulnerability

Background The PEAR XML-RPC and phpxmlrpc libraries are both PHP implementations of the XML-RPC protocol. Description James Bercegay of GulfTech Security Research discovered that the PEAR XML-RPC and phpxmlrpc libraries fail to sanatize input sent using the "POST" method. Impact A remote attacker...

7.5CVSS7.2AI score0.79071EPSS
Exploits5
securityvulns
securityvulns
added 2005/07/02 12:0 a.m.38 views

PHPXMLRPC Remote Code Execution

GulfTech Security Research June 29th, 2005 Vendor : Useful Information Inc. URL : http://phpxmlrpc.sourceforge.net/ Version : PHPXMLRPC 1.1 && Earlier Risk : Remote Command Execution Description: PHPXMLRPC aka XML-RPC For PHP is a PHP implementation of the XML-RPC web RPC protocol, and was...

0.5AI score
Exploits0
CVE
CVE
added 2005/07/01 4:0 a.m.232 views

CVE-2005-1921

CVE-2005-1921 is a remote PHP code execution vulnerability in PEAR XML_RPC (&lt;=1.3.0) and PHPXMLRPC (

7.5CVSS7.6AI score0.79071EPSS
Exploits5References50Affected Software1
Rows per page
Query Builder