The GFI WebMonitor administrative interface suffers from a remote script code injection vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/93153/gfi-inject.txt
Source: https://packetstormsecurity.com/files/93153/GFI-WebMonitor-Script-Code-Injection.html