Apache · Subversion · CVE-2013-2088
**Name of the Vulnerable Software and Affected Versions**
Subversion versions prior to 1.6.23
**Description**
The issue allows remote authenticated users with commit permissions to execute arbitrary commands via shell metacharacters in a filename. This is possible due to a flaw in the contrib/hook-scripts/svn-keyword-check.pl script.
**Recommendations**
For versions prior to 1.6.23, update to version 1.6.23 or later to resolve the issue.