WTF???? CGI ????
https://www.w3.org/Security/faq/wwwsf4.html
Some 17 years ago, w3 warned about the potential security hole CGI represents. 17 years AGO!!!!!!!
If you've got a Cisco Unified Computing System or a Firepower 9000 Series appliance, get busy patching. The Borg says it slipped up and let a CGI script make unprotected calls to shell commands. By fooling around with the URL, an attacker would be able to send arbitrary commands to the affected kit. All versions of UCS …