RSS   Vulnerabilities for 'K+b-bestellsystem'   RSS

2007-11-29
 
CVE-2007-6176

 

 
kb_whois.cgi in K+B-Bestellsystem (aka KB-Bestellsystem) allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) domain or (2) tld parameter in a check_owner action.

 


Copyright 2024, cxsecurity.com

 

Back to Top