Added: 04/06/2006
CVE: CVE-2005-2877
BID: 14834
OSVDB: 19403
TWiki is a web-based collaboration platform written in PERL.
The revision control function in TWiki does not sufficiently check the **rev**
parameter before using it in a shell command call. This allows remote attackers to execute arbitrary commands using a **rev**
parameter containing shell metacharacters.
Apply the patch referenced in CIAC Bulletin P-307.
<http://archives.neohapsis.com/archives/bugtraq/2005-09/0154.html>