CVE-2013-2512: Remote command execution

February 28, 2013

The ls interface can have commands injected into it if option or filename contain the shell character. This vulnerability requires that the file having commands injected in to it be in the Current Working Directory (CWD).

References

osvdb.org/show/osvdb/90784

Detect and mitigate CVE-2013-2512 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →