Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Packet Storm
Packet Stormadded 2006/05/24 12:0 a.m.39 views

rt-sa-2006-003.txt

Advisory: Perlpodder Remote Arbitrary Command Execution RedTeam identified a security flaw in perlpodder which makes it possible for a malicious podcast server to execute arbitrary shell commands on the victim's client. Details ======= Product: perlpodder Affected Versions: All versions up to...

Exploits0
NVD
NVDadded 2006/05/23 10:6 a.m.9 views

CVE-2006-2550

perlpodder before 0.5 allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast, which are executed when saving the URL to a log file. NOTE: the wget vector is already covered by CVE-2006-2548...

5.1CVSS7.5AI score0.05249EPSS
Exploits1References8
Prion
Prionadded 2006/05/23 10:6 a.m.10 views

Code injection

perlpodder before 0.5 allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast, which are executed when saving the URL to a log file. NOTE: the wget vector is already covered by CVE-2006-2548...

5.1CVSS7.9AI score0.34147EPSS
Exploits2References8Affected Software1
Prion
Prionadded 2006/05/23 10:6 a.m.14 views

Code injection

Prodder before 0.5, and perlpodder before 0.5, allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast url attribute of an enclosure tag, or $encurl variable, which is executed when running wget...

7.5CVSS7.9AI score0.34147EPSS
Exploits1References13Affected Software2
Cvelist
Cvelistadded 2006/05/23 10:0 a.m.16 views

CVE-2006-2548

Prodder before 0.5, and perlpodder before 0.5, allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast url attribute of an enclosure tag, or $encurl variable, which is executed when running wget...

7.5AI score0.34147EPSS
Exploits1References13
CVE
CVEadded 2006/05/23 10:0 a.m.33 views

CVE-2006-2550

CVE-2006-2550 affects perlpodder before 0.5. It allows remote code execution via shell metacharacters in the podcast URL, which are executed when the URL is saved to a log file. The public description notes that the wget vector is covered by CVE-2006-2548. Connected documents confirm the basic vu...

5.1CVSS7.5AI score0.05249EPSS
Exploits1References8Affected Software1
Cvelist
Cvelistadded 2006/05/23 10:0 a.m.12 views

CVE-2006-2550

perlpodder before 0.5 allows remote attackers to execute arbitrary code via shell metacharacters in the URL of a podcast, which are executed when saving the URL to a log file. NOTE: the wget vector is already covered by CVE-2006-2548...

7.5AI score0.05249EPSS
Exploits1References8
securityvulns
securityvulnsadded 2006/05/23 12:0 a.m.40 views

Perlpodder Remote Arbitrary Command Execution

Advisory: Perlpodder Remote Arbitrary Command Execution RedTeam identified a security flaw in perlpodder which makes it possible for a malicious podcast server to execute arbitrary shell commands on the victim's client. Details ======= Product: perlpodder Affected Versions: All versions up to...

0.6AI score
Exploits0
Rows per page
Query Builder