MidnightBSD

Advisories for chumby

CVE-2010-0418 HIGH

The web interface in chumby one before 1.0.4 and chumby classic before 1.7.2 allows remote attackers to execute arbitrary commands via shell metacharacters in a request.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
chumby chumby_classic 1.5
chumby chumby_one *
chumby chumby_classic 1.6
chumby chumby_classic 1.7
chumby chumby_classic 1.4
chumby chumby_classic *
chumby chumby_one 1.0.2
chumby chumby_classic 0.9
chumby chumby_classic 1.2
chumby chumby_classic 1.1