DotBr 0.1 - 'System.php3' Remote Command Execution

Author: frog
type: webapps
platform: php
port: 
date_added: 2003-02-15 
date_updated: 2012-10-25 
verified: 1 
codes: CVE-2003-1405;OSVDB-5089 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/6866/info

The DotBr 'system.php3' script is prone to a remote command execution vulnerability. This is due to insufficient sanitization of user-supplied data. Exploitation may result in execution of arbitrary shell commands with the privileges of the webserver process.

http://www.example.com/admin/system.php3?cmd=[COMMAND]