CVE-2007-4925

The ewirePC_Decrypt function in ewirepcfunctions.php in eWire Payment Client (ePC) 1.60 and 1.70 allows remote attackers to execute arbitrary commands via shell metacharacters in the paymentinfo parameter to simplePHPLinux/3payment_receive.php.
Configurations

Configuration 1

cpe:2.3:a:ewire:payment_client:1.60:*:*:*:*:*:*:*
cpe:2.3:a:ewire:payment_client:1.70:*:*:*:*:*:*:*

Information

Published : 2007-09-18 06:17

Updated : 2013-09-13 05:43


NVD link : CVE-2007-4925

Mitre link : CVE-2007-4925

Products Affected
No products.
CWE