Subject: [TWiki-Dev] TWiki security alert: Execute Commands with Search Date: Fri, 12 Nov 2004 09:50:03 -0800 From: Peter Thoeny To: TWiki-Dev Hi TWiki dev community: I have been made aware of a severe vulnerability in search: Anyone can execute arbitraty commands on the server with the search command. All TWiki versions seem to be affected. Fix is available, see below. TWiki.org is secured. I will post Codev.SecurityAlertExecuteCommandsWithSearch in about 10 hours. This gives you time to alert and fix public web sites before the vulnerability gets known by more crackers. Regards, Peter *** ../../../TWiki/Search.pm 2004-10-21 11:41:14.000000000 -0700 --- ./Search.pm 2004-11-12 09:35:46.000000000 -0800 *************** *** 442,447 **** --- 442,451 ---- my $tempVal = ""; my $tmpl = ""; my $topicCount = 0; # JohnTalintyre + + #quick fix for search vulnerability "test_vulnerability '; ls -la'" + $theSearchVal =~ s/[\'\`]//g; + my $originalSearch = $theSearchVal; my $renameTopic; my $renameWeb = "";