eoc.py in Enemies of Carlotta (EoC) before 1.2.4 allows remote attackers to execute arbitrary commands via shell metacharacters in an "SMTP level e-mail address".
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| enemies_of_carlotta | enemies_of_carlotta | 1.2.3 |
| enemies_of_carlotta | enemies_of_carlotta | 1.0.3 |