• info
• discussion
• exploit
• solution
• references

Xcms Password Parameter Arbitrary PHP Code Execution Vulnerability

Attackers can use a browser to exploit this issue.

A sample proof of concept is available:

• /data/vulnerabilities/exploits/25771.html