Описание
A flaw was found in WebSVN 2.3.2. Without prior authentication, if the 'allowDownload' option is enabled in config.php, an attacker can invoke the dl.php script and pass a well formed 'path' argument to execute arbitrary commands against the underlying operating system.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.3.3-1 |
| hardy | ignored | end of life |
| lucid | ignored | end of life |
| maverick | ignored | end of life |
| natty | ignored | end of life |
| oneiric | not-affected | |
| precise | not-affected | 2.3.3-1 |
| quantal | not-affected | 2.3.3-1 |
| raring | not-affected | 2.3.3-1 |
| saucy | not-affected | 2.3.3-1 |
Показывать по
EPSS
9.3 Critical
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
A flaw was found in WebSVN 2.3.2. Without prior authentication, if the 'allowDownload' option is enabled in config.php, an attacker can invoke the dl.php script and pass a well formed 'path' argument to execute arbitrary commands against the underlying operating system.
A flaw was found in WebSVN 2.3.2. Without prior authentication, if the ...
A flaw was found in WebSVN 2.3.2. Without prior authentication, if the 'allowDownload' option is enabled in config.php, an attacker can invoke the dl.php script and pass a well formed 'path' argument to execute arbitrary commands against the underlying operating system.
EPSS
9.3 Critical
CVSS2
9.8 Critical
CVSS3