CVE-2007-1136

2007-03-02T16:18:00
ID CVE-2007-1136
Type cve
Reporter NVD
Modified 2011-03-07T21:51:21

Description

index.php in WebMplayer before 0.6.1-Alpha allows remote attackers to execute arbitrary code via shell metacharacters in an exec function call. NOTE: some sources have referred to this as eval injection in the param parameter, but CVE source inspection suggests that this is erroneous.