Описание
aspell_setup.php in the SpellChecker plugin in DTLink AreaEdit before 0.4.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the dictionary parameter (aka the lang variable).
aspell_setup.php in the SpellChecker plugin in DTLink AreaEdit before 0.4.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the dictionary parameter (aka the lang variable).
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-2682
- http://secunia.com/advisories/16511
- http://www.formvista.com/forum.html?COMP=forum&cmd=view_thread&%28fvs%29cs_forums_threads_ref=47
- http://www.formvista.com/forum.html?COMP=forum&cmd=view_thread&(fvs)cs_forums_threads_ref=47
- http://www.formvista.com/otherprojects/areaedit
EPSS
Процентиль: 76%
0.00982
Низкий
CVE ID
Связанные уязвимости
nvd
больше 20 лет назад
aspell_setup.php in the SpellChecker plugin in DTLink AreaEdit before 0.4.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the dictionary parameter (aka the lang variable).
EPSS
Процентиль: 76%
0.00982
Низкий