CVE-2006-1087
PHP-Stats 0.1.9.1 and earlier are affected by a Direct static code injection in the modify_config action of admin.php. The vulnerability arises from unsafely storing the option_new[compatibility_mode] value in config.php, allowing an attacker with remote authenticated admin access to execute arbi...