MantisBT: master-1.3.x cebfb9ac

Author Committer Branch Timestamp Parent
dregad dregad master-1.3.x 2019-09-21 08:02 master-1.3.x 7092573f
Affected Issues  0026162: CVE-2019-15715: Command Execution / Injection Vulnerability
Changeset

Escape GraphViz command before calling proc_open()

Fixes 0026162, CVE-2019-15715

(cherry picked from commit 5fb979604d88c630343b3eaf2b435cd41918c501)

mod - core/graphviz_api.php Diff File