GeSHi 'geshi.php' Remote Code Execution Vulnerability

info
discussion
exploit
solution
references

GeSHi 'geshi.php' Remote Code Execution Vulnerability

GeSHi is prone to a remote code-execution vulnerability.

Exploiting this issue allows attackers to cause the application to execute arbitrary code within the context of the webserver.

Versions prior to GeSHi 1.0.8.1 are vulnerable.