CVE-2000-1131
CVE-2000-1131 concerns Bill Kendrick’s web site guestbook (GBook), where remote Command Execution is possible via shell metacharacters in the _MAILTO form variable. The vulnerability stems from improper handling of user-supplied input, enabling arbitrary commands to be run on the server. Reported...