Full title: NAS4Free Arbitrary Remote Code Execution Vulnerability Category: remote exploits Platform: php NAS4Free allows an authenticated user to post PHP code to a special HTTP script and have the code executed remotely. This Metasploit module was successfully tested against NAS4Free version 9.1.0.1.804. Earlier builds are likely to be vulnerable as well. # 0day.today @ http://0day.today/