Intrusion Prevention



This indicates an attempt to exploit a command execution vulnerability in TWiki.
The vulnerability is a result of the application's failure to properly sanitize the image variable in a URL query. As a result, a remote attacker can send a
crafted query to execute arbitrary commands.

Affected Products

TWiki before 4.2.3


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Refer to the vendor's web site for suggested workaround:

CVE References