Vulnerabilities > CVE-2013-7392 - Unspecified vulnerability in Gitlist

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
gitlist
exploit available
NVD
Published: 2014-07-22
Updated: 2024-11-21

Summary

Gitlist allows remote attackers to execute arbitrary commands via shell metacharacters in a file name to Source/.

Vulnerable Configurations

Part Description Count
Application
Gitlist
1

Exploit-Db

  • descriptionGitlist <= 0.4.0 - Remote Code Execution. CVE-2013-7392,CVE-2014-4511,CVE-2014-5023. Remote exploits for multiple platform
    fileexploits/multiple/remote/33929.py
    idEDB-ID:33929
    last seen2016-02-03
    modified2014-06-30
    platformmultiple
    port
    published2014-06-30
    reporterdrone
    sourcehttps://www.exploit-db.com/download/33929/
    titleGitlist <= 0.4.0 - Remote Code Execution
    typeremote
  • descriptionGitlist Unauthenticated Remote Command Execution. CVE-2013-7392,CVE-2014-4511. Remote exploits for multiple platform
    fileexploits/multiple/remote/33990.rb
    idEDB-ID:33990
    last seen2016-02-03
    modified2014-07-07
    platformmultiple
    port80
    published2014-07-07
    reportermetasploit
    sourcehttps://www.exploit-db.com/download/33990/
    titleGitlist Unauthenticated Remote Command Execution
    typeremote

References