Remote Code Execution (RCE)

octobot is vulnerable to remote code execution. Lack of sanitization of Tentacles upload allows an attacker to inject and execute malicious package via uploading feature...

GHSA-FR75-X856-Q6J8 Octobot mishandles Tentacles upload

WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...

Octobot mishandles Tentacles upload

WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...

CVE-2021-36711

WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...

CVE-2021-36711

WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...

PYSEC-2022-235

WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...

Remote code execution

WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...

PYSEC-2022-235

WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...

CVE-2021-36711

WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...

CVE-2021-36711

The provided corpus confirms CVE-2021-36711 affects the OctoBot WebInterface, with remote code execution possible due to mishandled Tentacles uploads in versions before 0.4.4. The Red Hat, OSV, PacketStorm, ExploitDB, and NVD entries agree on the same description: vulnerability in the WebInterfac...