4 matches found
Atlassian SourceTree 0.5a < 3.0.17 Multiple remote code execution vulnerabilities
The version of Atlassian SourceTree installed on the remote Windows host is version 0.5a prior to 3.0.17. It is, therefore, affected by multiple remote code execution vulnerabilities. - An option injection vulnerability exists in the git submodule component. An unauthenticated, remote attacker ca...
CVE-2018-20235
CVE-2018-20235 affects Atlassian SourceTree for Windows via an argument injection vulnerability in the Mercurial repository handling (filenames) that allows a remote attacker with commit access to a linked Mercurial repo to execute code on the system. Affected versions are SourceTree for Windows ...
Argument Injection via Mercurial hooks in Sourcetree for Windows - CVE-2018-20235
There was an argument injection vulnerability in Sourcetree for Windows via filenames in Mercurial repositories. An attacker with permission to commit to a Mercurial repository linked in Sourcetree for Windows is able to exploit this issue to gain code execution on the system. h4. Affected...
Argument Injection via Mercurial hooks in Sourcetree for Windows - CVE-2018-20235
There was an argument injection vulnerability in Sourcetree for Windows via filenames in Mercurial repositories. An attacker with permission to commit to a Mercurial repository linked in Sourcetree for Windows is able to exploit this issue to gain code execution on the system. h4. Affected...