2007-10-20 10:00:00
mitre
PUBLISHED
DotBr 0.1 allows remote attackers to execute arbitrary shell commands via the cmd parameter to (1) exec.php3 or (2) system.php3.