VDB
CVE-2013-2121
CVE-2013-2121
PUBLISHED
Reported by redhat · Published July 31, 2013
Eval injection vulnerability in the create method in the Bookmarks controller in Foreman before 1.2.0-RC2 allows remote authenticated users with permissions to create bookmarks to execute arbitrary code via a controller name attribute.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| n/a | n/a | n/a, n/a |
Exploit Intelligence
- https://bugzilla.redhat.com/show_bug.cgi?id=966804 (nist-nvd)
- 27045 (cve.org)
- Foreman (Red Hat OpenStack/Satellite) Code Injection Vulnerability (0day-today)
Timeline
- Jul 23, 2013 PoC Published
- Jul 31, 2013 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 3, 2023 EPSS Score
- Feb 13, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 27, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- x_refsource_CONFIRM
- RHSA-2013:0995 vendor-advisoryx_refsource_REDHAT
- x_refsource_CONFIRM
- 27045 exploitx_refsource_EXPLOIT-DB
- x_refsource_CONFIRM