logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-32305

Description

WebSVN before 2.6.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the search parameter. **Recent assessments:** **NinjaOperator** at September 01, 2021 4:26pm UTC reported: Unknown actors are actively exploiting a disclosed command injection vulnerability affecting WebSVN, an open-source web application for browsing source. The actors used a command injection to download a shell script that will infect the system with malware. <https://unit42.paloaltonetworks.com/cve-2021-32305-websvn/> Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0


Related