5 matches found
Atlassian SourceTree 0.5a < 3.0.17 Multiple remote code execution vulnerabilities
The version of Atlassian SourceTree installed on the remote Windows host is version 0.5a prior to 3.0.17. It is, therefore, affected by multiple remote code execution vulnerabilities. - An option injection vulnerability exists in the git submodule component. An unauthenticated, remote attacker ca...
CVE-2018-20236
There was an command injection vulnerability in Sourcetree for Windows from version 0.5a before version 3.0.10 via URI handling. A remote attacker could send a malicious URI to a victim using Sourcetree for Windows to exploit this issue to gain code execution on the system...
CVE-2018-20236
There was an command injection vulnerability in Sourcetree for Windows from version 0.5a before version 3.0.10 via URI handling. A remote attacker could send a malicious URI to a victim using Sourcetree for Windows to exploit this issue to gain code execution on the system...
CVE-2018-20236
CVE-2018-20236 affects Sourcetree for Windows: a URI-handling vulnerability in versions older than 3.0.10 allows unauthenticated remote attackers to supply a malicious URI that yields code execution on the victim’s system. Affected: Sourcetree for Windows before 3.0.10 (0.5a–3.0.9). Remediation: ...
Command Injection via URI handling in Sourcetree for Windows - CVE-2018-20236
There was an command injection vulnerability in Sourcetree for Windows via URI handling. A remote attacker could send a malicious URI to a victim using Sourcetree for Windows to exploit this issue to gain code execution on the system. h4. Affected versions: Versions of Sourcetree for Windows befo...