Kevin Perry

**Name of the Vulnerable Software and Affected Versions** Webglimpse versions prior to 2.20.0 **Description** The issue allows remote attackers to execute arbitrary commands via shell metacharacters in the `query` parameter. This has been exploited in the wild. **Recommendations** For versions prior to 2.20.0, update to version 2.20.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the `webglimpse.cgi` script to minimize the risk of exploitation. Avoid using shell metacharacters in the `query` parameter until the issue is resolved.