Lucene search
FreeBSDF241641E-F5EA-11D9-A6DB-000D608ED240HistoryJun 29, 2005 - 12:00 a.m.
drupal -- PHP code execution vulnerabilities
2005-06-2900:00:00
vuxml.freebsd.org
29
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.956 High
EPSS
Percentile
99.4%
Kuba Zygmunt discovered a flaw in the input validation routines
of Drupal’s filter mechanism. An attacker could execute
arbitrary PHP code on a target site when public comments or
postings are allowed.
Related
openvas
openvas
Debian: Security Advisory (DSA-745-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 745-1 (drupal)
2008-01-17 00:00:00
FreeBSD Ports: drupal
2008-09-04 00:00:00
osv
osv
drupal - arbitrary command execution
2005-07-10 00:00:00
php4 - several
2005-08-29 00:00:00
nessus
nessus
FreeBSD : drupal -- PHP code execution vulnerabilities (f241641e-f5ea-11d9-a6db-000d608ed240)
2005-08-01 00:00:00
Debian DSA-745-1 : drupal - input validation errors
2005-07-10 00:00:00
Serendipity XML-RPC for PHP Remote Code Injection
2005-07-01 00:00:00
debian
debian
[SECURITY] [DSA 745-1] New drupal package fixes multiple vulnerabilities
2005-07-10 03:54:23
[SECURITY] [DSA 745-1] New drupal package fixes multiple vulnerabilities
2005-07-10 03:54:23
patchstack
patchstack
WordPress <= 1.3.0 - Eval Injection
2005-06-08 00:00:00
packetstorm
packetstorm
PHP XML-RPC Arbitrary Code Execution
2009-10-30 00:00:00
cvelist
cvelist
gentoo
gentoo
phpWebSite: Multiple vulnerabilities
2005-07-10 00:00:00
TikiWiki: Arbitrary command execution through XML-RPC
2005-07-06 00:00:00
phpGroupWare, eGroupWare: PHP script injection vulnerability
2005-07-10 00:00:00
wpvulndb
wpvulndb
WordPress <= 1.5.1.2 - XMLRPC Eval Injection
2005-06-29 00:00:00
checkpoint_advisories
checkpoint_advisories
LupperA XMLRPC Propagation Request Code Execution - Ver2 (CVE-2005-1921)
2015-03-26 00:00:00
suse
suse
remote code execution in php/pear XML::RPC
2005-07-08 15:32:35
remote code execution in php4, php5
2005-08-30 14:35:22
local command execution, authentication bypass, in apache2
2005-09-12 13:00:50
ubuntucve
ubuntucve
securityvulns
securityvulns
[Full-disclosure] [ GLSA 200507-06 ] TikiWiki: Arbitrary command execution through XML-RPC
2005-07-07 00:00:00
Advisory 02/2005: Remote code execution in Serendipity
2005-07-01 00:00:00
Advisory 02/2005: Remote code execution in Serendipity
2005-06-30 00:00:00
nvd
nvd
cve
cve
cert
cert
Multiple PHP XML-RPC implementations vulnerable to code injection
2005-07-06 00:00:00
exploitpack
exploitpack
PHPXMLRPC 1.1 - Remote Code Execution
2015-07-02 00:00:00
ubuntu
ubuntu
PHP XMLRPC vulnerability
2005-07-05 00:00:00
freebsd
freebsd
pear-XML_RPC -- arbitrary remote code execution
2005-06-29 00:00:00
postnuke -- multiple vulnerabilities
2005-05-27 00:00:00
slackware
slackware
PHP
2005-07-11 17:25:23
exploitdb
exploitdb
PHPXMLRPC < 1.1 - Remote Code Execution
2015-07-02 00:00:00
centos
centos
php security update
2005-07-07 20:36:04
redhat
redhat
(RHSA-2005:564) php security update
2005-07-07 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.956 High
EPSS
Percentile
99.4%
Related for F241641E-F5EA-11D9-A6DB-000D608ED240