Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Argument injection vulnerability in Request Tracker (RT) 3.8.x before 3.8.15 and 4.0.x before 4.0.8 allows remote attackers to create arbitrary files via unspecified vectors related to the GnuPG client.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Request Tracker 命令注入漏洞
Vulnerability Description
Best Practical Solutions Request Tracker(RT)是美国Best Practical Solutions公司的一套企业级开源问题跟踪系统。该系统具有Bug跟踪、客户服务、自定义工作流等功能。 Request Tracker (RT)早期版本至3.8.15以及4.0.8版本中存在命令注入漏洞,该漏洞源于处理GnuPG客户端部分命令行参数时存在一个错误。允许攻击者利用漏洞注入任意命令,在磁盘上以WEB权限创建任意文件。没启用GnuPG不受此漏洞影响。
CVSS Information
N/A
Vulnerability Type
N/A