3 matches found
CVE-2013-1751
TWiki before 5.1.4 allows remote attackers to execute arbitrary shell commands by sending a crafted '%MAKETEXT%' parameter value containing Perl backtick characters...
CVE-2013-1751
The CVE affects TWiki before 5.1.4. A crafted '%MAKETEXT{}%' parameter value containing Perl backtick characters allows remote attackers to execute arbitrary shell commands. The vulnerability is a command-injection in MAKETEXT handling, enabling remote code execution with the web server user priv...
CVE-2013-1751
TWiki before 5.1.4 allows remote attackers to execute arbitrary shell commands by sending a crafted '%MAKETEXT%' parameter value containing Perl backtick characters...