Lucene search
GoogleOSV:GHSA-756H-R2C9-QP5JHistoryJan 06, 2022 - 11:48 p.m.
An authenticated user can execute arbitrary command in Gerapy
2022-01-0623:48:50
Google
osv.dev
7
authenticated user
arbitrary command
gerapy
github
vulnerability
patch
software
EPSS
0.041
Percentile
92.3%
Impact
An authenticated user can execute arbitrary command, see more in https://github.com/Gerapy/Gerapy/issues/211.
Patches
Fixed in 0.9.9
References
github.com/Gerapy/Gerapy
github.com/Gerapy/Gerapy/issues/197
github.com/Gerapy/Gerapy/issues/217
github.com/Gerapy/Gerapy/security/advisories/GHSA-756h-r2c9-qp5j
lgtm.com/projects/g/Gerapy/Gerapy?mode=tree&ruleFocus=1505994646253
nvd.nist.gov/vuln/detail/CVE-2021-32849
securitylab.github.com/advisories/GHSL-2021-076-gerapy
Related
nvd
nvd
CVE-2021-32849
2022-01-26 22:15:07
githubexploit
githubexploit
Exploit for Command Injection in Gerapy
2021-11-29 06:39:27
Exploit for OS Command Injection in Gerapy
2022-04-25 06:44:46
cnvd
cnvd
Gerapy Authentication Remote Command Execution Vulnerability
2021-11-29 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2022-01-07 12:26:36
osv
osv
PYSEC-2022-17
2022-01-26 22:15:00
CVE-2021-32849
2022-01-26 22:15:07
cvelist
cvelist
CVE-2021-32849 Arbitrary command execution in Gerapy
2022-01-26 21:30:14
cve
cve
CVE-2021-32849
2022-01-26 22:15:07
prion
prion
Command injection
2022-01-26 22:15:00
github
github
An authenticated user can execute arbitrary command in Gerapy
2022-01-06 23:48:50