Approved changes feed: RSS · Atom
cpe:2.3:a:php:xml_rpc:*:*:*:*:*:pear:*:*
part: a version: * update: *
| Vendor | Php (9aec2613-7a27-5ce5-8ac7-140851d8da4c) |
|---|---|
| Product | Xml Rpc (d11e150c-63b0-578b-bf8e-f3f20522d534) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | pear |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2005-1921 |
vulnerable | 2026-06-03 14:27:00.627073 |
Details available
Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) MailWatch, (6) TikiWiki, (7) phpWebSite, (8) Ampache, and others, allows remote attackers to execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.
Published: 2005-07-01T04:00:00.000Z
Updated: 2024-08-07T22:06:57.671Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.