CVE-2013-2513: Remote code execution vulnerability

March 1, 2013

If files downloaded contain shell characters it’s possible to execute code as the client user

References

direct.osvdb.org/show/osvdb/90829
vapid.dhs.org/advisories/flash_tool-0.6.0-cmd_exec.html

Detect and mitigate CVE-2013-2513 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →