Webfroot Shoutbox Expanded.PHP Remote Command Execution Vulnerability

info
discussion
exploit
solution
references

Webfroot Shoutbox Expanded.PHP Remote Command Execution Vulnerability

Shoutbox is prone to an issue that may result in the execution of attacker-supplied code. The vulnerability exists due to insufficient sanitization of input into the expanded.php script.