dcboard.cgi in DCForum 2000 1.0 allows remote malicious users to execute arbitrary commands by uploading a Perl program to the server and using a .. (dot dot) in the AZ parameter to reference the program.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dcscripts dcforum 5.0 |
||
dcscripts dcforum 6.0 |
||
dcscripts dcforum 3.0 |
||
dcscripts dcforum 4.0 |
||
dcscripts dcforum 1.0 |
||
dcscripts dcforum 2.0 |
||
dcscripts dcforum 2000 1.0 |