index.php in WebMplayer before 0.6.1-Alpha allows remote attackers to execute arbitrary code via shell metacharacters in an exec function call. NOTE: some sources have referred to this as eval injection in the param parameter, but CVE source inspection suggests that this is erroneous.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-02-27T18:00:00
Updated: 2008-11-15T10:00:00
Reserved: 2007-02-27T00:00:00
Link: CVE-2007-1136
JSON object: View
NVD Information
Status : Modified
Published: 2007-03-02T21:18:00.000
Modified: 2011-03-08T02:51:21.860
Link: CVE-2007-1136
JSON object: View
Redhat Information
No data.
CWE