Difuse/luci
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
luci/protocols/luci-proto-wireguard
History
Jo-Philipp Wich 44445a8097 luci-proto-wireguard: fix potential shell injection vulnerabilities 
The `luci.wireguard.generateQrCode` UBUS method allows injecting
arbitrary shell code by not sanitizing the `privkey` and `allowed_ips`
arguments before concatenating them into shell command expressions.

Signed-off-by: Jo-Philipp Wich <jo@mein.io>
2021-10-08 20:27:13 +02:00
..
htdocs/luci-static/resources/protocol luci-proto-wireguard: fix markup not valid for XHTML 2021-10-07 16:19:30 +02:00
root/usr luci-proto-wireguard: fix potential shell injection vulnerabilities 2021-10-08 20:27:13 +02:00
Makefile luci-proto-wireguard: fix luci.wireguard rpcd dependency 2021-09-30 12:46:15 +02:00