2 matches found
CVE-2007-6176
kbwhois.cgi in K+B-Bestellsystem aka KB-Bestellsystem allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 domain or 2 tld parameter in a checkowner action...
CVE-2007-6176
Affected product/component: K+B-Bestellsystem, kb_whois.cgi. Vulnerability: remote attackers can execute arbitrary commands via shell metacharacters in the (1) domain or (2) tld parameter of the check_owner action. Impact: complete compromise of confidentiality, integrity, and availability (CVSS ...