NuytsTech Security

CVE-2006-3819

by ·

Eval injection vulnerability in the configure script in TWiki 4.0.0 through 4.0.4 allows remote attackers to execute arbitrary Perl code via an HTTP POST request containing a parameter name starting with "TYPEOF".

Date published : 2006-07-26

http://www.securityfocus.com/bid/19188

http://twiki.org/cgi-bin/view/Codev/SecurityAlertCmdExecWithConfigure

Tags: