Back to search
CVE-2005-2559
Published: Aug 16, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
doping.php in ePing plugin 1.02 and earlier for e107 portal allows remote attackers to execute arbitrary code or overwrite files via (1) shell metacharacters in the eping_count parameter or (2) restricted shell metacharacters such as ">" and "&" in the eping_host parameter, which is not handled by the validation function.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://e107plugins.co.uk/news.php
x_refsource_CONFIRM
20050805 Vulnerability in ePing and eTrace plugins of e107
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now