CVE-2010-0418

The web interface in chumby one before 1.0.4 and chumby classic before 1.7.2 allows remote attackers to execute arbitrary commands via shell metacharacters in a request.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:h:chumby:chumby_one:1.0.2:*:*:*:*:*:*:*
cpe:2.3:h:chumby:chumby_one:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:h:chumby:chumby_classic:1.5:*:*:*:*:*:*:*
cpe:2.3:h:chumby:chumby_classic:1.4:*:*:*:*:*:*:*
cpe:2.3:h:chumby:chumby_classic:*:*:*:*:*:*:*:*
cpe:2.3:h:chumby:chumby_classic:1.7:*:*:*:*:*:*:*
cpe:2.3:h:chumby:chumby_classic:1.6:*:*:*:*:*:*:*
cpe:2.3:h:chumby:chumby_classic:1.2:*:*:*:*:*:*:*
cpe:2.3:h:chumby:chumby_classic:1.1:*:*:*:*:*:*:*
cpe:2.3:h:chumby:chumby_classic:0.9:*:*:*:*:*:*:*

Information

Published : 2010-03-10 12:13

Updated : 2010-03-30 22:41


NVD link : CVE-2010-0418

Mitre link : CVE-2010-0418


JSON object : View

CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Advertisement

dedicated server usa

Products Affected

chumby

  • chumby_one
  • chumby_classic