CVE-2010-0418

The web interface in chumby one before 1.0.4 and chumby classic before 1.7.2 allows remote attackers to execute arbitrary commands via shell metacharacters in a request...

Fixed XSS vulnerability at www.chumby.com

Security researcher mox, has submitted on 08/04/2008 a cross-site-scripting XSS vulnerability affecting www.chumby.com, which at the time of submission ranked 55744 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/04/2008. It is currently...