The remote server uses a version of GoAhead that allows a remote unauthenticated attacker to pass environment variables through a CGI script. This attack leads to remote code execution.
Binary data goahead_cgi_rce.nbin
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17562
github.com/embedthis/goahead/issues/99#issuecomment-307476085
www.elttam.com.au/blog/goahead/