View Revisions: Issue #17725

Summary 0017725: CVE-2014-7146 : PHP Code Injection Vulnerability in XmlImportExport plugin
Revision 2014-10-07 04:56 by dregad
Description

There's a PHP code injection vulnerability within the Import/Export plugin (/plugins/XmlImportExport/ImportXml.php): user input passed through the "description" field (and the "issuelink" attribute) of the uploaded XML file isn't properly sanitized before being used in a call to the preg_replace() function which uses the 'e' modifier. This can be exploited to inject and execute arbitrary PHP code when the Import/Export plugin is installed.

Revision 2014-10-04 14:18 by EgiX
Description

There's a PHP code injection vulnerability within the Import/Export plugin: user input passed through the "description" field (and the "issuelink" attribute) of the uploaded XML file isn't properly sanitized before being used in a call to the preg_replace() function which uses the 'e' modifier. This can be exploited to inject and execute arbitrary PHP code when the Import/Export plugin is installed.