CVE-2008-5516
The web interface in git (gitweb) 1.5.x before 1.5.5 allows remote attackers to execute arbitrary commands via shell metacharacters related to git_search.
Date published : 2009-01-20
http://www.securityfocus.com/archive/1/500008/100/0/threaded