2019-02-11 03:00:00
mitre
PUBLISHED
Nibbleblog 4.0.5 allows eval injection by placing PHP code in the install.php username parameter and then making a content/private/shadow.php request.