4 matches found
Community Link Pro webeditor login.cgi remote command execution
The remote host is running Community Link Pro, a web-based application written in Perl. The remote version of this software contains a flaw in the script 'login.cgi' which may allow an attacker to execute arbitrary commands on the remote host. OpenVAS Vulnerability Test $Id:...
Community Link Pro login.cgi file Parameter Arbitrary Command Execution
The remote host is running Community Link Pro, a web-based application written in Perl. The remote version of this software fails to sanitize user input to the 'file' parameter of the 'login.cgi' script of shell metacharacters before using it to run a command. An unauthenticated attacker can...
CVE-2005-2111
login.cgi in Community Link Pro Web Editor allows remote attackers to execute arbitrary commands via the file parameter...
CVE-2005-2111
The OpenVAS/Nessus entries confirm CVE-2005-2111 affects Community Link Pro Web Editor’s login.cgi. The flaw lies in the login.cgi script where the file parameter is not sanitized, enabling an unauthenticated attacker to execute arbitrary commands on the remote host. This is described as remote c...