CVE-2019-19010
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2019-19010
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-19010.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2019-19010
- Aliases
- Downstream
- Published
- 2019-11-16T01:15:10.217Z
- Modified
- 2025-11-14T09:25:11.152629Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Eval injection in the Math plugin of Limnoria (before 2019.11.09) and Supybot (through 2018-05-09) allows remote unprivileged attackers to disclose information or possibly have unspecified other impact via the calc and icalc IRC commands.
- References
-
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/54CQM2TEXRADLE77VOMCPHL5PBHR3ZWJ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5P2AGND54UIJV3WHOYO2YINIXSDGAAPO/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DRNOUHFEN75QAIKT4Y3HDN3TT5LSIWN2/
- https://github.com/ProgVal/Limnoria/commit/3848ae78de45b35c029cc333963d436b9d2f0a35
- https://github.com/ProgVal/Limnoria/wiki/math-eval-vulnerability
Affected packages
Git / github.com/progval/limnoria
Affected ranges
- Type
- GIT
- Repo
- https://github.com/progval/limnoria
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
master-2014-11-24
master-2014-12-11
master-2014-12-24
master-2015-01-18
master-2015-02-08
master-2015-03-18
master-2015-04-29
master-2015-05-20
master-2015-05-21
master-2015-05-23
master-2015-07-26
master-2015-08-22
master-2015-08-29
master-2015-09-23
master-2015-10-10
master-2015-12-01
master-2015-12-02
master-2015-12-12
master-2016-01-06
master-2016-02-03
master-2016-02-24
master-2016-03-24
master-2016-05-06
master-2016-06-27
master-2016-06-29
master-2016-08-07
master-2016-09-26
master-2016-10-02
master-2016-10-02-2
master-2016-12-01
master-2016-12-08
master-2017-01-27
master-2017-04-16
master-2017-08-05
master-2017-08-18
master-2017-10-25
master-2018-01-28
master-2018-04-21
master-2018-06-25
master-2018-06-25-2
master-2018-09-08
master-2018-09-10
master-2018-12-24
master-2019-02-21
master-2019-02-23
master-2019-07-17
master-2019-08-25
master-2019-09-08
master-2019-10-26
v0.*
v0.73.0
v0.73.1
v0.75.0
v0.76.0
v0.76.1
v0.77.0
v0.77.1
v0.77.2
v0.79.9
v0.79.99
v0.79.999
v0.79.9999
v0.80.0
v0.80.0pre1
v0.80.0pre2
v0.80.0pre3
v0.80.0pre4
v0.80.0pre5
v0.80.0pre6
v0.80.0rc2
v0.80.0rc3
v0.80.1
v0.83.0
v0.83.0rc1
v0.83.0rc2
v0.83.0rc3
v0.83.1
v0.83.2
v0.83.4
v0.83.4.1
v0.83.4.1+limnoria1