Phorum Stats Program Arbitrary Command Execution Vulnerability

info
discussion
exploit
solution
references

Phorum Stats Program Arbitrary Command Execution Vulnerability

Phorum has been reported prone to remote arbitrary command execution vulnerability.

The issue presents itself due to a lack of sufficient sanitization performed on user-supplied data submitted to the Phorum Stats program.