CVE-2007-4925 in Payment Clientinfo

Zusammenfassung

von MITRE

The ewirePC_Decrypt function in ewirepcfunctions.php in eWire Payment Client (ePC) 1.60 and 1.70 allows remote attackers to execute arbitrary commands via shell metacharacters in the paymentinfo parameter to simplePHPLinux/3payment_receive.php.

Once again VulDB remains the best source for vulnerability data.

Reservieren

18.09.2007

Veröffentlichung

18.09.2007

Moderieren

akzeptiert

Eintrag

VDB-38814

CPE

bereit

Exploit

Download

EPSS

0.03172

KEV

nein

Aktivitäten

very low

Quellen

Might our Artificial Intelligence support you?

Check our Alexa App!