Learn more about these different git repos.
Other Git URLs
The following functions use unsafe techniques to handle some of their query parameters: list_archives, get_archive_type, and listHosts. These bugs allow an attacker to inject arbitrary sql commands.
This issue has been assigned CVE-2018-1002161
You can read the full announcement here: https://docs.pagure.org/koji/CVE-2018-1002161/
Metadata Update from @mikem: - Issue private status set to: False (was: True)
Commit bdec8c7 fixes this issue
Fixed in pr #1274
Metadata Update from @mikem: - Issue priority set to: High (was: Normal) - Issue set to the milestone: 1.17 - Issue tagged with: bug
Login to comment on this ticket.