P4DB versions 2.01 and below suffer from a lack of proper user input validation that allows for remote arbitrary command execution. Some cross site scripting flaws also exist.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/33258/p4db.txt
Source: https://packetstormsecurity.com/files/33258/p4db.txt.html