viralator CGI script in Viralator 0.9pre1 and earlier allows remote attackers to execute arbitrary code via a URL for a file being downloaded, which is insecurely passed to a call to wget.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Viralator | Duncan_hall | 0.7 | 0.7 |
Viralator | Duncan_hall | 0.8 | 0.8 |
Viralator | Duncan_hall | 0.9_pre1 | 0.9_pre1 |