Lucene search
GoogleOSV:PYSEC-2022-31HistoryMar 04, 2022 - 8:15 p.m.
PYSEC-2022-31
2022-03-0420:15:00
Google
osv.dev
11
0.003 Low
EPSS
Percentile
69.3%
The package weblate from 0 and before 4.11.1 are vulnerable to Remote Code Execution (RCE) via argument injection when using git or mercurial repositories. Authenticated users, can change the behavior of the application in an unintended way, leading to command execution.
Related
osv
osv
CVE-2022-23915
2022-03-04 20:15:07
BIT-weblate-2022-23915
2024-03-06 11:08:26
Command injection in Weblate
2022-03-05 00:00:44
cve
cve
CVE-2022-24727
2022-03-04 17:15:07
CVE-2022-23915
2022-03-04 20:15:07
nvd
nvd
CVE-2022-24727
2022-03-04 17:15:07
CVE-2022-23915
2022-03-04 20:15:07
veracode
veracode
Command Injection
2022-03-07 14:39:59
Remote Code Execution (RCE)
2022-03-07 08:31:21
github
github
Command injection in Weblate
2022-03-05 00:00:44
cvelist
cvelist
CVE-2022-24727
2022-03-04 16:45:12
CVE-2022-23915 Remote Code Execution (RCE)
2022-03-04 00:00:00
prion
prion
Remote code execution
2022-03-04 20:15:00