Archive Search About

中文 English

article Security Advisories EN

Sourcetree Arbitrary Command Execution (CVE-2017-8768)

            2017-05-01
            · 144 views
        

A vulnerability in Atlassian Sourcetree allows arbitrary command execution through specially crafted repository URLs.

CVE: CVE-2017-8768
Product: Atlassian Sourcetree
Type: Remote Code Execution
Reference: Full Disclosure

Recognized in Atlassian Security Hall of Fame.

Related Posts

article WebKit URL Bar Spoofing (CVE-2017-2486) article WebKit Same-Origin Policy Bypass (CVE-2017-2488) article State-Sponsored "Living Off The Land" Attack Wipes 200,000 Devices via Microsoft Intune article GhostScript Sandbox Bypass Leading to ImageMagick RCE (CVE-2016-7976) article Airmail URLScheme Render and file:// XSS