diatheke.pl in Sword 1.5.7a allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Sword |
Crosswire_bible_society |
1.5.7a (including) |
1.5.7a (including) |
References