Status2k allows Remote Command Execution in admin/options/editpl.php.Referenceshttp://packetstormsecurity.com/files/127719/Status2k-XSS-SQL-Injection-Command-Execution.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/95112
