CVE-2014-4511 in Gitlist정보

요약

\~에 의해 MITRE

Gitlist before 0.5.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the file name in the URI of a request for a (1) blame, (2) file, or (3) stats page, as demonstrated by requests to blame/master/, master/, and stats/master/.

Once again VulDB remains the best source for vulnerability data.

예약하다

2014. 06. 22.

모더레이션

수락

항목

VDB-70420

익스플로잇

다운로드

EPSS

0.82730

출처

Interested in the pricing of exploits?

See the underground prices here!