Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2013-2121

Опубликовано: 07 июн. 2013
Источник: redhat
CVSS2: 6

Описание

Eval injection vulnerability in the create method in the Bookmarks controller in Foreman before 1.2.0-RC2 allows remote authenticated users with permissions to create bookmarks to execute arbitrary code via a controller name attribute.

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-95
https://bugzilla.redhat.com/show_bug.cgi?id=968166Foreman: app/controllers/bookmarks_controller.rb remote code execution

6 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2013-2121

nvd
больше 12 лет назад

Eval injection vulnerability in the create method in the Bookmarks controller in Foreman before 1.2.0-RC2 allows remote authenticated users with permissions to create bookmarks to execute arbitrary code via a controller name attribute.

debian логотип

CVE-2013-2121

debian
больше 12 лет назад

Eval injection vulnerability in the create method in the Bookmarks con ...

github логотип

GHSA-j6g9-xm4c-vp6v

github
больше 3 лет назад

Eval injection vulnerability in the create method in the Bookmarks controller in Foreman before 1.2.0-RC2 allows remote authenticated users with permissions to create bookmarks to execute arbitrary code via a controller name attribute.

6 Medium

CVSS2