CVE-2009-1512
CVE-2009-1512 - Affected: X-Forum 0.6.2. Description: static code injection vulnerability where remote authenticated administrators can inject arbitrary PHP code into Config.php via the adminEMail parameter to SaveConfig.php. Impact: enables code execution under the attacker’s PHP context as auth...