7.5
CVE-2005-2559
- EPSS 2.26%
- Veröffentlicht 16.08.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:15:12
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
doping.php in ePing plugin 1.02 and earlier for e107 portal allows remote attackers to execute arbitrary code or overwrite files via (1) shell metacharacters in the eping_count parameter or (2) restricted shell metacharacters such as ">" and "&" in the eping_host parameter, which is not handled by the validation function.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.26% | 0.807 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://e107plugins.co.uk/news.php
http://marc.info/?l=bugtraq&m=112328161319148&w=2