返回 CVE 瀏覽器

CVE-2005-2290

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1230%

EPSS Percentile19.69th

Published2005年7月18日

Last Modified2026年4月16日

Vulnerability Description

wps_shop.cgi in WPS Web Portal System 0.7.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) art and (2) cat variables.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=112128870110418&w=2

🔗 http://secunia.com/advisories/15780

🔗 http://securitytracker.com/id?1014480

🔗 http://www.securityfocus.com/bid/14245

🔗 http://marc.info/?l=bugtraq&m=112128870110418&w=2

🔗 http://secunia.com/advisories/15780

🔗 http://securitytracker.com/id?1014480

🔗 http://www.securityfocus.com/bid/14245

相關漏洞威脅

CVE-2005-129910.0

The inserter.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.

CVE-2005-266910.0

Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows remote at...

CVE-2005-266810.0

Multiple buffer overflows in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before...

CVE-2005-103710.0

Unknown vulnerability in AIX 5.3.0, when configured as an NIS client, allows remote attackers to gain root privileges.