2 matches found
CVE-2008-6539
Static code injection vulnerability in user/settings/ in DeStar 0.2.2-5 allows remote authenticated users to add arbitrary administrators and inject arbitrary Python code into destarcfg.py via a crafted pin parameter...
CVE-2008-6539
The CVE-2008-6539 entry is concrete: DeStar 0.2.2-5 contains a static code injection in the user/settings/ path that allows remote authenticated users to add arbitrary administrators and inject arbitrary Python code into destar_cfg.py via a crafted pin parameter. The underlying issue is a code-in...