Full title: IPFire 2.25 Remote Code Execution Exploit 
Category: remote exploits
Platform: cgi
This Metasploit module exploits an authenticated command injection vulnerability in the /cgi-bin/pakfire.cgi web page of IPFire devices running versions 2.25 Core Update 156 and prior to execute arbitrary code as the root user.

# 0day.today @ http://0day.today/