Xplico Remote Code Execution

This Metasploit module exploits a command injection vulnerability in Xplico. Unauthenticated users can register a new account and then execute a terminal command under the context of the root user.
Source: Xplico Remote Code Execution