CVE-2011-4453

Pmwiki - Code Injection

Title source: rule

Description

The PageListSort function in scripts/pagelist.php in PmWiki 2.x before 2.2.35 allows remote attackers to execute arbitrary code via PHP sequences in a crafted order parameter in a pagelist directive, leading to unintended use of the PHP create_function function.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubywebappsphp

https://www.exploit-db.com/exploits/18243

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by EgiX · phpwebappsphp

https://www.exploit-db.com/exploits/18149

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by EgiX · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/pmwiki_pagelist.rb

View Code ZIP pw:eip

References (3)

[Exploit] http://www.exploit-db.com/exploits/18149/

[Exploit] http://www.exploit-db.com/exploits/18243/

[Exploit, Patch] http://www.pmwiki.org/wiki/PITS/01271

Scores

EPSS 0.8405

EPSS Percentile 99.3%

Details

CWE

CWE-94

Status published

Products (43)

pmwiki/pmwiki 2.0.0

pmwiki/pmwiki 2.0.1

pmwiki/pmwiki 2.0.2

pmwiki/pmwiki 2.0.3

pmwiki/pmwiki 2.0.4

pmwiki/pmwiki 2.0.5

pmwiki/pmwiki 2.0.6

pmwiki/pmwiki 2.0.7

pmwiki/pmwiki 2.0.8

pmwiki/pmwiki 2.0.9

... and 33 more

Published Dec 22, 2011

Tracked Since Feb 18, 2026