Published:2005/12/20 Last Updated:2008/05/21
JVN#87830692
WebNote Clip vulnerable to OS command injection
Overview
WebNote Clip is CGI software to create bulletin boards, calendars, reports, and diaries. WebNote Clip contains an OS command injection vulnerability as it does not validate inputs properly.
Products Affected
- WebNote Clip 4.1.7 and earlier
Description
Impact
An attacker could execute an arbitrary OS command on the server with WebNote Clip installed.
Solution
References
JPCERT/CC Addendum
Credit
Other Information
| JPCERT Alert | |
| JPCERT Reports | |
| CERT Advisory | |
| CPNI Advisory | |
| TRnotes | |
| CVE | |
| JVN iPedia |
JVNDB-2005-000801 |