CVE-2015-6008 Information

Description

install.php in Web Reference Database (aka refbase) through 0.9.6 allows remote attackers to execute arbitrary commands via the adminPassword parameter a different issue than CVE-2015-7381.

Reference

http://www.kb.cert.org/vuls/id/374092 https://www.exploit-db.com/exploits/38292/