inurl:technote inurl:main.cgi*filename=*
http://www.securityfocus.com/bid/2156/discussion/ Remote command execution vulnerability in the filename parameter.
体验盒子