PHP.PEAR.XMLRPC.Code.Injection
Description
This indicates a possible attempt to launch a PHP injection attack against XML-RPC.
XML-RPC for PHP is vulnerable to a PHP injection attack. A successful exploit can lead to the execution of an arbitrary PHP script with the privileges of the Web server.
Affected Products
XML-RPC for PHP 1.1 and earlier versions
Impact
System compromise: remote code execution.
Recommended Actions
Apply the appropriate patch from the vendor or upgrade to a non-vulnerable version.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |