Eval injection vulnerability in Karrigell before 2.1.8 allows remote attackers to execute arbitrary Python code via modified arguments to a Karrigell services (.ks) script, which can reference functions from libraries that are used by that script.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| karrigell | karrigell | 2.0_beta |
| karrigell | karrigell | 2.1.4 |
| karrigell | karrigell | 2.1.1 |
| karrigell | karrigell | 2.1.5 |
| karrigell | karrigell | 2.0.3 |
| karrigell | karrigell | 2.0.1 |
| karrigell | karrigell | 2.1 |
| karrigell | karrigell | 2.0 |
| karrigell | karrigell | 2.0.4 |
| karrigell | karrigell | 2.0.2 |
| karrigell | karrigell | 2.0.5 |
| karrigell | karrigell | 2.1.3 |
| karrigell | karrigell | 2.1.2 |