eoc.py in Enemies of Carlotta (EoC) before 1.2.4 allows remote attackers to execute arbitrary commands via shell metacharacters in an SMTP level e-mail address.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Enemies_of_carlotta | Enemies_of_carlotta | 1.0.3 | 1.0.3 |
Enemies_of_carlotta | Enemies_of_carlotta | 1.2.3 | 1.2.3 |