Shell-injection vulnerability in Mercurial prior to version 4.3 due to inadequate hostname sanitization in ssh
CVE-2017-1000116 · HIGH Severity
AV:N/AC:L/AU:N/C:C/I:C/A:C
Mercurial prior to 4.3 did not adequately sanitize hostnames passed to ssh, leading to possible shell-injection attacks.
Learn more about our Web Application Penetration Testing UK.