CVE-2013-0171 Information

Description

Foreman before 1.1 allows remote attackers to execute arbitrary code via a crafted YAML object to the (1) fact or (2) report import API.

Reference

http://projects.theforeman.org/issues/2069 http://theforeman.org/security.html