This Metasploit module exploits a command execution vulnerability in WebTester version 5.x. The ‘install2.php’ file allows unauthenticated users to execute arbitrary commands in the ‘cpusername’, ‘cppassword’ and ‘cpdomain’ parameters…. This Metasploit module exploits a command execution vulnerability in WebTester version 5.x. The ‘install2.php’ file allows unauthenticated users to execute arbitrary commands in the ‘cpusername’, ‘cppassword’ and ‘cpdomain’ parameters.

Read more http://packetstormsecurity.com/files/123670/webtester_exec.rb.txt