CVE-2013-10037 — An OS command injection vulnerability exists in WebTester version 5.x via the install2.php installation script. The parameters cpusername, cppassword, and cpdomain are passed directly to shell command — CVE Database · The Intelligence Room