Security Advisory
CVE-2013-1349
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Eval injection vulnerability in ajax.php in openSIS 4.5 through 5.2 allows remote attackers to execute arbitrary PHP code via the modname parameter.