CVE-2005-2682

2005-08-2304:00:00

mitre

www.cve.org

7.7 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.7%

JSON

aspell_setup.php in the SpellChecker plugin in DTLink AreaEdit before 0.4.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the dictionary parameter (aka the lang variable).

References

secunia.com/advisories/16511

www.formvista.com/forum.html?COMP=forum&cmd=view_thread&%28fvs%29cs_forums_threads_ref=47

www.formvista.com/otherprojects/areaedit