CVE-2005-2559

EPSS 1.84%
Published 16.08.2005 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

doping.php in ePing plugin 1.02 and earlier for e107 portal allows remote attackers to execute arbitrary code or overwrite files via (1) shell metacharacters in the eping_count parameter or (2) restricted shell metacharacters such as ">" and "&" in the eping_host parameter, which is not handled by the validation function.

Affected products Warnungen 0 Metrics 2 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

E107 ≫ E107

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.84%	0.813

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://e107plugins.co.uk/news.php

Patch

URL Repurposed

http://marc.info/?l=bugtraq&m=112328161319148&w=2

https://nvd.nist.gov/vuln/detail/CVE-2005-2559

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-2559

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-2559

EUVD