CNNVD-202506-3362 Information

CNNVD ID

CNNVD-202506-3362

Related CVE

CVE-2014-0468

• CNNVD Published: 2025-06-26

Description (Chinese)

FusionForge是一套团队协作开发工具。该产品主要包括在线通讯、bug跟踪和项目管理等功能。 fusionforge 5.3+20140506之前版本存在安全漏洞，该漏洞源于Apache配置允许执行用户上传的原始SCM仓库脚本。

Description (English)

FusionForge is a set of team development tools. The product consists mainly of online communications, bug tracking and project management functions. There was a security loophole in the pre-Fusionforge 5.3+20140506, which originated in the original SCM repository script that the Apache configuration allowed to be uploaded by the user.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Live Support

Published

2025-06-26

Last Modified

2026-02-24

References

http://lists.fusionforge.org/pipermail/fusionforge-general/2014-March/002645.html https://web.archive.org/web/20151019035734/

Patch

https://github.com/fusionforge/fusionforge/tags