The history (revision control) function in TWiki 02-Sep-2004 and previous versions allows remote malicious users to execute arbitrary code via shell metacharacters, as demonstrated via the rev parameter to TWikiUsers.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
twiki twiki 2004-09-01 |
||
twiki twiki 2004-09-02 |
||
twiki twiki 2000-12-01 |
||
twiki twiki 2001-12-01 |
||
twiki twiki 2003-02-01 |