login.cgi in Community Link Pro Web Editor allows remote attackers to execute arbitrary commands via the file parameter.Referenceshttp://securitytracker.com/id?1014345http://www.badroot.org/advisories/SA0x05http://secunia.com/advisories/15880http://marc.info/?l=bugtraq&m=112006558125309&w=2
