Cosmo 1.0.0Beta6 allows attackers to execute arbitrary PHP code via the Database Prefix field on the Database Info screen of install.php.Referenceshttps://github.com/CosmoCMS/Cosmo/issues/405
