Filtered by vendor Pear Subscriptions
Filtered by product Pear Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2009-4025 1 Pear 1 Pear 2024-11-21 N/A
Argument injection vulnerability in the traceroute function in Traceroute.php in the Net_Traceroute package before 0.21.2 for PEAR allows remote attackers to execute arbitrary shell commands via the host parameter. NOTE: some of these details are obtained from third party information.
CVE-2009-4024 1 Pear 1 Pear 2024-11-21 N/A
Argument injection vulnerability in the ping function in Ping.php in the Net_Ping package before 2.4.5 for PEAR allows remote attackers to execute arbitrary shell commands via the host parameter. NOTE: this has also been reported as a shell metacharacter problem.
CVE-2009-4023 1 Pear 1 Pear 2024-11-21 N/A
Argument injection vulnerability in the sendmail implementation of the Mail::Send method (Mail/sendmail.php) in the Mail package 1.1.14 for PEAR allows remote attackers to read and write arbitrary files via a crafted $from parameter, a different vector than CVE-2009-4111.