3 matches found
CVE-2012-3399
Config/diff.php in Basilic 1.5.14 allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter...
CVE-2012-3399
CVE-2012-3399 describes a remote command execution in Basilic 1.5.14 triggered by unsanitized input in diff.php via the file parameter, allowing an attacker to execute shell commands with the web server user (www-data). The root cause is input verification weaknesses in the affected function. Pub...
CVE-2012-3399
creationtimestamp| type| source ---|---|--- 2012-07-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/19631 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/basilicdiffexec.rb 2025-02-06 03:13:40+00:00| seen|...