CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Prion•added 2008/02/25 9:44 p.m.•25 views

Design/Logic Flaw

diatheke.pl in The SWORD Project Diatheke 1.5.9 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the range parameter...

7.5CVSS8AI score0.02138EPSS

Exploits0References13Affected Software2

CVE•added 2008/02/25 9:0 p.m.•100 views

CVE-2008-0932

CVE-2008-0932 affects The SWORD Project’s Diatheke: diatheke.pl (Diatheke 1.5.9 and earlier) is vulnerable to remote command execution via shell metacharacters in the range parameter. Root cause: inadequate sanitization of shell meta-characters. Impact: remote attacker could run arbitrary command...

7.5CVSS7.3AI score0.02138EPSS

Exploits0References13Affected Software2

UbuntuCve•added 2005/05/02 4:0 a.m.•14 views

CVE-2005-0015

diatheke.pl in Sword 1.5.7a allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...

7.5CVSS6AI score0.01079EPSS

Exploits0References1

NVD•added 2005/05/02 4:0 a.m.•24 views

CVE-2005-0015

diatheke.pl in Sword 1.5.7a allows remote attackers to execute arbitrary commands via shell metacharacters in a URL...

7.5CVSS7.5AI score0.01079EPSS

Exploits0References6

CVE•added 2005/01/29 5:0 a.m.•53 views

CVE-2005-0015

The CVE-2005-0015 issue concerns diatheke.pl in Sword 1.5.7a, where missing input sanitising enables remote attackers to execute arbitrary commands via shell metacharacters in a URL. Public sources (Debian DSA-650-1, OpenVAS DSAs) confirm a remote command-execution vulnerability in Sword’s CGI sc...

7.5CVSS7.4AI score0.01079EPSS

Exploits0References6Affected Software1