Cosmo 1.0.0Beta6 allows attackers to execute arbitrary PHP code via the Database Prefix field on the Database Info screen of install.php.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-94,
Products Affected