This exploit executes code at a user-defined (local) path as SYSTEM, when the execute_installer parameter is used in an HTTP message. This occurs without properly authenticating the user
CVE Link
Exploit Platform
Exploit Type
Product Name