CVE-2000-1131

Bill Kendrick web site guestbook (GBook) allows remote attackers to execute arbitrary commands via shell metacharacters in the _MAILTO form variable.

Date published : 2001-01-22

http://www.securityfocus.com/bid/1940

http://archives.neohapsis.com/archives/bugtraq/2000-11/0144.html