CVE-2014-4511

Gitlist < 0.5.0 - Remote Code Execution via Shell Metacharacters in URI

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2014-4511. PoCs published by Metasploit, drone, michaelsss1, including Metasploit module exploits/linux/http/gitlist_exec.

AI-analyzed exploit summary This Metasploit module exploits an unauthenticated remote command execution vulnerability in Gitlist 0.4.0 by injecting commands into a specially crafted filename during a blame operation.

Description

Gitlist before 0.5.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the file name in the URI of a request for a (1) blame, (2) file, or (3) stats page, as demonstrated by requests to blame/master/, master/, and stats/master/.

Exploits (4)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotemultiple
https://www.exploit-db.com/exploits/33990

This Metasploit module exploits an unauthenticated remote command execution vulnerability in Gitlist 0.4.0 by injecting commands into a specially crafted filename during a blame operation.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Gitlist 0.4.0
No auth needed
Prerequisites: Network access to the target Gitlist instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by drone · pythonremotemultiple
https://www.exploit-db.com/exploits/33929

This exploit leverages a command injection vulnerability in Gitlist <= 0.4.0 by crafting a malicious URL path that executes arbitrary commands via the `blame` functionality. The payload is base64-encoded and written to a PHP file in the cache directory, enabling remote code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Gitlist <= 0.4.0
No auth needed
Prerequisites: Access to the Gitlist web interface · Write permissions to the cache directory
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec WORKING POC
by michaelsss1 · poc
https://github.com/michaelsss1/gitlist-RCE

This repository provides a proof-of-concept for CVE-2014-4511, a remote code execution vulnerability in GitList. The exploit involves uploading a malicious PHP file to the target server and executing arbitrary commands via a reverse shell.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: GitList
No auth needed
Prerequisites: Access to the GitList web interface · Ability to upload files to the server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by drone · rubypocunix
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/gitlist_exec.rb

This Metasploit module exploits an unauthenticated remote command execution vulnerability in Gitlist 0.4.0 by injecting commands into a crafted file name during a blame operation. It includes a check method to verify vulnerability and an exploit method to execute the payload.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Gitlist 0.4.0
No auth needed
Prerequisites: Network access to the target Gitlist instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Scores

EPSS 0.8273
EPSS Percentile 99.6%

Details

Status published
Products (4)
gitlist/gitlist 0.1
gitlist/gitlist 0.2
gitlist/gitlist 0.3
gitlist/gitlist < 0.4.0
Published Jul 22, 2014
Tracked Since Feb 18, 2026