← back
CVE-2008-5920

CVE-2008-5920

EPSS 3.0%
The create_anchors function in utils.inc in WebSVN 1.x allows remote attackers to execute arbitrary PHP code via a crafted username that is processed by the preg_replace function with the eval switch.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/6822unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://securityreason.com/securityalert/4928https://exchange.xforce.ibmcloud.com/vulnerabilities/48168https://www.exploit-db.com/exploits/6822http://www.gulftech.org/?node=research&article_id=00132-10202008http://www.securityfocus.com/bid/31891