I have discovered a method to get remote command execution on your machine. To demonstrate, I need you to wget this google url:

wget -q www.google.com/support?tid=;id;#g54g23df233d

Do you see what I did there? If you didn’t catch it, there is an id inside the url. I successfully executed a command

So be careful!

A related attack is one where you copypaste something but you aint copying what you see.