Vulnerabilities > Netrik > Netrik > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-12-21 | CVE-2006-6678 | Remote Arbitrary Command Execution vulnerability in Netrik 1.15.2 The edit_textarea function in form-file.c in Netrik 1.15.4 and earlier does not properly verify temporary filenames when editing textarea fields, which allows attackers to execute arbitrary commands via shell metacharacters in the filename. | 7.5 |