Etherpad Lite ep_imageconvert Plugin Remote Command Injection Vulnerability

ep_imageconvert plugin for Etherpad Lite is prone to a remote command-injection vulnerability.

Successfully exploiting this issue may allow an attacker to execute arbitrary commands in context of the affected application.

ep_imageconvert versions 0.0.2 and prior are vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus