Textpattern · Textpattern Cms · CVE-2010-3205
**Name of the Vulnerable Software and Affected Versions**
Textpattern CMS version 4.2.0
**Description**
The issue allows remote attackers to execute arbitrary PHP code via a URL in the `inc` parameter in the `index.php` file.
**Recommendations**
For Textpattern CMS version 4.2.0, update to a newer version that contains a fix for this issue.