Drupal · Magic Tabs · CVE-2008-2772
**Name of the Vulnerable Software and Affected Versions**
Magic Tabs module versions 5.x before 5.x-1.1
**Description**
The issue allows remote attackers to execute arbitrary PHP code via unspecified URL arguments, possibly related to a missing whitelist of callbacks.
**Recommendations**
For Magic Tabs module versions 5.x before 5.x-1.1, update to version 5.x-1.1 or later to resolve the issue.