You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
ksg97031
changed the title
An authenticated user can execute command by the 'project_clone' method
An authenticated user can execute command
Sep 25, 2021
ksg97031
changed the title
An authenticated user can execute command
An authenticated user can execute arbitrary command
Sep 25, 2021
Describe the bug
The below code is vulnerable to remote code execution
https://github.com/Gerapy/Gerapy/blob/master/gerapy/server/core/views.py#L323-L343
To Reproduce
The text was updated successfully, but these errors were encountered: