2 matches found
CVE-2008-4873
CVE-2008-4873 affects Sepal SPBOARD 4.5: board.cgi’s down_file action accepts a file parameter, and remote attackers can inject shell metacharacters to execute arbitrary commands. The vulnerability enables full compromise of confidentiality, integrity, and availability (as reflected in CVSS: Netw...
CVE-2008-4873
board.cgi in Sepal SPBOARD 4.5 allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter during a downfile action...