Yhager

**Name of the Vulnerable Software and Affected Versions** Magic Tabs module versions 5.x before 5.x-1.1 **Description** The issue allows remote attackers to execute arbitrary PHP code via unspecified URL arguments, possibly related to a missing whitelist of callbacks. **Recommendations** For Magic Tabs module versions 5.x before 5.x-1.1, update to version 5.x-1.1 or later to resolve the issue.