• info
• discussion
• exploit
• solution
• references

CoreHTTP CGI Support Remote Command Execution Vulnerability

An attacker can exploit this issue using a browser.

The following example URI is available:

http://www.example.com/foo.pl%60command%26%60

The following exploit is available:

• /data/vulnerabilities/exploits/37454.rb