CVE-2005-0516 - Dichlamydeous Option

Description

The ImageGalleryPlugin (ImageGalleryPlugin.pm) in Twiki allows remote attackers to execute arbitrary commands via certain commands that generate thumbnails.

Reference

http://www.enyo.de/fw/security/notes/twiki-robustness.html http://static.enyo.de/fw/patches/twiki/imagegallery-robustness-20041128.diff http://secunia.com/advisories/14384 http://marc.info/?l=bugtraq&m=110918725225288&w=2