viewFile.php in the scm component of Gforge prior to 4.0 allows remote malicious users to execute arbitrary commands via shell metacharacters in the file_name parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gforge gforge 3.1 |
||
gforge gforge 3.2 |
||
gforge gforge 3.21 |
||
gforge gforge 3.3 |