cgit 'syntax-highlighting.sh' Remote Command Injection Vulnerability

cgit is prone to a remote command-injection vulnerability because it fails to properly sanitize user-supplied input in the 'syntax-highlighting.sh' script.

An attacker can exploit this vulnerability to inject and execute arbitrary commands within the context of the affected application.


 

Privacy Statement
Copyright 2010, SecurityFocus