Newbug

**Name of the Vulnerable Software and Affected Versions** FtpLocate version 2.02 **Description** The issue allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTP GET request to the flsearch.pl script. **Recommendations** For FtpLocate version 2.02, consider restricting access to the flsearch.pl script until a patch is available. As a temporary workaround, avoid using shell metacharacters in HTTP GET requests to minimize the risk of exploitation.