Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Family Connections Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2011-5130 - Vulnerability Database
Family Connections

Family Connections Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2011-5130

Medium
Reference: CVE-2011-5130
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2011-5130
Title: Family Connections Improper Control of Generation of Code (Code Injection) Vulnerability
Overview:

dev/less.php in Family Connections CMS (FCMS) 2.5.0 - 2.7.1 when register_globals is enabled allows remote attackers to execute arbitrary commands via shell metacharacters in the argv1 parameter.