Arbitrary Code Execution Vulnerability in TWiki's History Function

Arbitrary Code Execution Vulnerability in TWiki's History Function

CVE-2005-2877 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The history (revision control) function in TWiki 02-Sep-2004 and earlier allows remote attackers to execute arbitrary code via shell metacharacters, as demonstrated via the rev parameter to TWikiUsers.

Learn more about our User Device Pen Test.