2002-02-02 05:00:00
mitre
PUBLISHED
shopplus.cgi in ShopPlus shopping cart allows remote attackers to execute arbitrary commands via shell metacharacters in the "file" parameter.