2 matches found
CVE-2000-1131
CVE-2000-1131 concerns Bill Kendrick’s web site guestbook (GBook), where remote Command Execution is possible via shell metacharacters in the _MAILTO form variable. The vulnerability stems from improper handling of user-supplied input, enabling arbitrary commands to be run on the server. Reported...
CVE-2000-1131
Bill Kendrick web site guestbook GBook allows remote attackers to execute arbitrary commands via shell metacharacters in the MAILTO form variable...