Описание
The eval_js function in uzbl-core.c in Uzbl before 2010.01.05 exposes the run method of the Uzbl object, which allows remote attackers to execute arbitrary commands via JavaScript code.
Ссылки
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1Версия до 2009.12.22 (включая)
cpe:2.3:a:uzbl:uzbl:*:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.00934
Низкий
7.5 High
CVSS2
Дефекты
CWE-264
Связанные уязвимости
ubuntu
почти 16 лет назад
The eval_js function in uzbl-core.c in Uzbl before 2010.01.05 exposes the run method of the Uzbl object, which allows remote attackers to execute arbitrary commands via JavaScript code.
debian
почти 16 лет назад
The eval_js function in uzbl-core.c in Uzbl before 2010.01.05 exposes ...
github
больше 3 лет назад
The eval_js function in uzbl-core.c in Uzbl before 2010.01.05 exposes the run method of the Uzbl object, which allows remote attackers to execute arbitrary commands via JavaScript code.
EPSS
Процентиль: 75%
0.00934
Низкий
7.5 High
CVSS2
Дефекты
CWE-264