CVE-2008-4318 Information

Description

Observer 0.3.2.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the query parameter to (1) whois.php or (2) netcmd.php.

Reference

http://securityreason.com/securityalert/4322 https://exchange.xforce.ibmcloud.com/vulnerabilities/45398 https://www.exploit-db.com/exploits/6559