RSS   Vulnerabilities for 'Alchemist-server'   RSS

2017-11-17
 
CVE-2017-1000212

CWE-264
 

 
Elixir's vim plugin, alchemist.vim is vulnerable to remote code execution in the bundled alchemist-server. A malicious website can execute requests against an ephemeral port on localhost that are then evaluated as elixir code.

 


Copyright 2018, cxsecurity.com

 

Back to Top