CVE-2005-1921

EPSS 86.15% · P99 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2005-1921

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) MailWatch, (6) TikiWiki, (7) phpWebSite, (8) Ampache, and others, allows remote attackers to execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

XML-RPC/PHP-XMLRPC 代码注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

PEAR XML_RPC及PHPXMLRPC是在较多网站应用系统中使用的功能模块。 PEAR XML_RPC 1.3.0及之前版本(也称为XML-RPC或xmlrpc)以及PHPXMLRPC (也称为XML-RPC For PHP或php-xmlrpc) 1.1及之前版本中存在代码注入漏洞。由于在使用文件前没有进行适当的检验处理，远程攻击者可通过XML文件，利用此漏洞执行任意PHP代码。多个使用这些模块的产品，包括WordPress， Serendipity，Drupal，egroupware， Ma

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2005-1921

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2005-1921

请登录查看更多情报信息。

http://www.drupal.org/security/drupal-sa-2005-003/advisory.txtx_refsource_CONFIRM
http://sourceforge.net/project/showfiles.php?group_id=87163x_refsource_CONFIRM
http://www.hardened-php.net/advisory-022005.phpx_refsource_MISC
http://pear.php.net/package/XML_RPC/download/1.3.1x_refsource_MISC
http://sourceforge.net/project/shownotes.php?release_id=338803x_refsource_CONFIRM
http://www.ampache.org/announce/3_3_1_2.phpx_refsource_CONFIRM
http://www.gulftech.org/?node=research&article_id=00087-07012005x_refsource_MISC
http://secunia.com/advisories/15944third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/16339third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15855third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15917third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15903third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15852third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18003third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15861third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/17674third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15904third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/16001third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/17440third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15947third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15916third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15895third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15957third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/16693third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15810third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15884third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15922third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/14088vdb-entryx_refsource_BID
http://secunia.com/advisories/15883third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/15872third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2005/dsa-745vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2005/dsa-746vendor-advisoryx_refsource_DEBIAN
http://www.debian.org/security/2005/dsa-789vendor-advisoryx_refsource_DEBIAN
http://securitytracker.com/id?1015336vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2005/dsa-747vendor-advisoryx_refsource_DEBIAN
http://www.securityfocus.com/archive/1/419064/100/0/threadedvendor-advisoryx_refsource_HP
http://www.redhat.com/support/errata/RHSA-2005-564.htmlvendor-advisoryx_refsource_REDHAT
http://www.vupen.com/english/advisories/2005/2827vdb-entryx_refsource_VUPEN
http://security.gentoo.org/glsa/glsa-200507-01.xmlvendor-advisoryx_refsource_GENTOO
http://security.gentoo.org/glsa/glsa-200507-07.xmlvendor-advisoryx_refsource_GENTOO
http://security.gentoo.org/glsa/glsa-200507-06.xmlvendor-advisoryx_refsource_GENTOO
http://www.mandriva.com/security/advisories?name=MDKSA-2005:109vendor-advisoryx_refsource_MANDRAKE
http://www.novell.com/linux/security/advisories/2005_18_sr.htmlvendor-advisoryx_refsource_SUSE
http://www.novell.com/linux/security/advisories/2005_49_php.htmlvendor-advisoryx_refsource_SUSE
http://marc.info/?l=bugtraq&m=112605112027335&w=2vendor-advisoryx_refsource_SUSE
http://marc.info/?l=bugtraq&m=112008638320145&w=2mailing-listx_refsource_BUGTRAQ
http://marc.info/?l=bugtraq&m=112015336720867&w=2mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2005-1921

Same Patch Batch · n/a · 2005-07-01 · 24 CVEs total

CVE-2005-0393		Crip HelperScripts 未知安全漏洞
CVE-2005-2115		ravensoft soldier2 ignore 拒绝服务漏洞
CVE-2005-2114		Mozilla 多个浏览器软件 javascript 拒绝服务漏洞
CVE-2005-2113		XOOPS XMLRPC SQL注入漏洞
CVE-2005-2112		XOOPS 多个跨站脚本攻击漏洞
CVE-2005-2111		needscripts.com CommunityLinkPro login.cgi 命令执行漏洞
CVE-2005-2110		WordPress 多个信息泄露漏洞
CVE-2005-2109		WordPress wp-login.php 信息篡改漏洞
CVE-2005-2108		免费软件 WordPress XMLRPC SQL注入漏洞
CVE-2005-2107		WordPress post.php 跨站脚本攻击漏洞
CVE-2005-2106		Drupal 未知 PHP代码执行漏洞
CVE-2005-2105		Cisco IOS AAA-Radius 绕过认证漏洞
CVE-2004-2144		Baal Smart Forms认证绕过漏洞
CVE-2005-0360		Microsoft pkmcore LogSinkClass 文件处理漏洞
CVE-2004-2153		Real Estate Management Software多个未明的漏洞
CVE-2004-2152		MediaWiki Raw Page跨站脚本漏洞
CVE-2004-2151		Virtual Projects Chatma拒绝服务漏洞
CVE-2004-2150		Nettica Corporation INTELLIPEER Email Server用户账户枚举漏洞
CVE-2004-2149		Oracle MySQL 缓冲区错误漏洞
CVE-2004-2148		Slava Astashonok Fprobe未明的本地漏洞

Showing top 20 of 24 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2005-1921

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2005-1921

I. Basic Information for CVE-2005-1921

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2005-1921

III. Intelligence Information for CVE-2005-1921

Same Patch Batch · n/a · 2005-07-01 · 24 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2005-1921

Leave a comment