CVE-2007-0850
CVE-2007-0850 affects SysCP up to version 1.2.15. The flaw resides in scripts/cronscript.php, which can include and execute arbitrary PHP scripts listed in the panel_cronscript table. An attacker with database write privileges can inject a PHP filename into that table to achieve arbitrary code ex...