CVE-2008-5517

The web interface in git (gitweb) 1.5.x before 1.5.6 allows remote attackers to execute arbitrary commands via shell metacharacters related to (1) git_snapshot and (2) git_object.

Date published : 2009-01-13

http://www.securityfocus.com/bid/33215

http://www.securityfocus.com/archive/1/500008/100/0/threaded