Lucene search
K

5 matches found

NVD
NVD
added 2007/05/29 9:30 p.m.12 views

CVE-2007-0246

plugins/scmcvs/www/cvsweb.php in the CVSWeb CGI in GForge 4.5.16 before 20070524, aka gforge-plugin-scmcvs, allows remote attackers to execute arbitrary commands via shell metacharacters in the PATHINFO...

6.8CVSS7.5AI score0.01823EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2007/05/29 9:30 p.m.23 views

CVE-2007-0246

plugins/scmcvs/www/cvsweb.php in the CVSWeb CGI in GForge 4.5.16 before 20070524, aka gforge-plugin-scmcvs, allows remote attackers to execute arbitrary commands via shell metacharacters in the PATHINFO...

6.8CVSS6AI score0.01823EPSS
Exploits0References1
CVE
CVE
added 2007/05/29 9:0 p.m.64 views

CVE-2007-0246

CVE-2007-0246 affects GForge’s CVSWeb CGI (plugins/scmcvs/www/cvsweb.php) running with CVSWeb in GForge 4.5.16 prior to 20070524. The vulnerability arises from insufficient sanitization of PATH_INFO, allowing remote attackers to inject shell metacharacters and execute arbitrary commands. Reported...

6.8CVSS7.3AI score0.01823EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2007/05/29 9:0 p.m.19 views

CVE-2007-0246

plugins/scmcvs/www/cvsweb.php in the CVSWeb CGI in GForge 4.5.16 before 20070524, aka gforge-plugin-scmcvs, allows remote attackers to execute arbitrary commands via shell metacharacters in the PATHINFO...

7.4AI score0.01823EPSS
Exploits0References8
securityvulns
securityvulns
added 2007/05/25 12:0 a.m.49 views

[SECURITY] [DSA 1297-1] New gforge-plugin-scmcvs packages fix arbitrary shell command execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1297-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 24th, 2007 http://www.debian.org/security/faq -...

6.8CVSS0.5AI score0.01823EPSS
Exploits0
Rows per page
Query Builder