Arbitrary Command Execution in WPS Web Portal System 0.7.0 via wps_shop.cgi

Arbitrary Command Execution in WPS Web Portal System 0.7.0 via wps_shop.cgi

CVE-2005-2290 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

wps_shop.cgi in WPS Web Portal System 0.7.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) art and (2) cat variables.

Learn more about our Web App Pen Testing.