Age | Commit message (Collapse) | Author | |
---|---|---|---|
2018-07-03 | CVE-2018-11652 nikto: arbitray OS command injection via http server field.morty | Nagalakshmi Veeramallu | |
CSV Injection vulnerability in Nikto 2.1.6 and earlier allows remote attackers to inject arbitrary OS commands via the Server field in an HTTP response header, which is directly injected into a CSV report. Signed-off-by: Nagalakshmi Veeramallu <nveeramallu@mvista.com> Reviewed-by: Jagadeesh Krishnanjanappa <jkrishnanjanappa@mvista.com> Signed-off-by: Armin Kuster <akuster@mvista.com> | |||
2013-07-10 | Security layer version 1.0 | Andrei Dinu | |
Signed-off-by: Andrei Dinu <andrei.adrianx.dinu@intel.com> |