CVE-2012-5347

2012-10-0915:00:00

mitre

www.cve.org

7.8 High

AI Score

Confidence

High

0.28 Low

EPSS

Percentile

96.9%

JSON

TinyWebGallery 1.8.3 allows remote attackers to execute arbitrary code via shell metacharacters in the command parameter to (1) inc/filefunctions.inc or (2) info.php.

References

www.exploit-db.com/exploits/18322

www.osvdb.org/82481

www.securityfocus.com/bid/51325

exchange.xforce.ibmcloud.com/vulnerabilities/72157