Beyond-Study

Name of the Vulnerable Software and Affected Versions: Cosmo version 1.0.0Beta6 Description: The issue allows attackers to execute arbitrary PHP code via the `Database Prefix` field on the "Database Info" screen of "install.php". Recommendations: For Cosmo version 1.0.0Beta6, avoid using the `Database Prefix` field in the "install.php" file until a fix is available. As a temporary workaround, consider restricting access to the "install.php" file to minimize the risk of exploitation.