Exploit Database - Logo

DotItYourself - 'dot-it-yourself.cgi' Remote Command Execution

EDB-ID: 39130 Author: Felipe Andrian Peixoto Published: 2014-03-26
CVE: N/A Type: Webapps Platform: CGI
Aliases: N/A Advisory/Source: Link Tags: Vulnerability
E-DB Verified: Verified Exploit: Download Exploit Code Download / View Raw Vulnerable App: N/A
« Previous Exploit Next Exploit » 
source: http://www.securityfocus.com/bid/66487/info

DotItYourself is prone to a remote command-execution vulnerability because the application fails to sufficiently sanitize user-supplied input data.

An attacker may leverage this issue to execute arbitrary commands in the context of the affected application.

DotItYourself 6.11.060830 is vulnerable; other versions may also be affected. 

http://www.example.com/cade/dot-it-yourself.cgi?download=;id|

Related Exploits

Other Possible E-DB Search Terms: DotItYourself
Date D V Title Author
No matches
Menu