Secflag

**Name of the Vulnerable Software and Affected Versions** WBCE CMS version 1.5.3 **Description** The issue is a command execution vulnerability. It can be exploited via the `admin/languages/install.php` endpoint. **Recommendations** For WBCE CMS version 1.5.3, consider disabling access to the `admin/languages/install.php` endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.