Arbitrary Command Execution in The Includer's includer.cgi

Arbitrary Command Execution in The Includer's includer.cgi

CVE-2005-0689 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

includer.cgi in The Includer allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the URL or (2) the template parameter.

Learn more about our Web Application Penetration Testing UK.