Arbitrary Command Execution in webglimpse.cgi

Arbitrary Command Execution in webglimpse.cgi

CVE-2012-1795 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

webglimpse.cgi in Webglimpse before 2.20.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the query parameter, as exploited in the wild in March 2012.

Learn more about our Web Application Penetration Testing UK.