Lukas Zapletal

1 exploit Active since Jun 2014
CVE-2014-0007 EXPLOITDB text WORKING POC
Foreman <1.4.5, <1.5.1 - Command Injection
The Smart-Proxy in Foreman before 1.4.5 and 1.5.x before 1.5.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the path parameter to tftp/fetch_boot_file.