NuytsTech Security

CVE-2006-0628

by ·

myquiz.pl in Dale Ray MyQuiz 1.01 allows remote attackers to execute arbitrary commands via shell metacharacters in the URL, which are not properly handled as part of the PATH_INFO environment variable.

Date published : 2006-02-10

http://www.securityfocus.com/archive/1/423921/100/0/threaded

http://www.securityfocus.com/archive/1/424266/100/0/threaded

Tags: