Verlihub-Project Verlihub vulnerabilities
2 known vulnerabilities affecting verlihub-project/verlihub.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-5705P2CRITICALCVSS 9.3PoCv0.9.8d2008-12-22
CVE-2008-5705 [CRITICAL] CWE-20 CVE-2008-5705: The cTrigger::DoIt function in src/ctrigger.cpp in the trigger mechanism in the daemon in Verlihub 0
The cTrigger::DoIt function in src/ctrigger.cpp in the trigger mechanism in the daemon in Verlihub 0.9.8d-RC2 and earlier, when user triggers are enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in an argument.
nvd
CVE-2008-5706P4MEDIUMCVSS 6.9PoCv0.9.8d2008-12-22
CVE-2008-5706 [MEDIUM] CWE-59 CVE-2008-5706: The cTrigger::DoIt function in src/ctrigger.cpp in the trigger mechanism in the daemon in Verlihub 0
The cTrigger::DoIt function in src/ctrigger.cpp in the trigger mechanism in the daemon in Verlihub 0.9.8d-RC2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/trigger.tmp temporary file.
nvd