PHP remote file inclusion vulnerability in SysCP 1.2.10 and previous versions allows remote malicious users to execute arbitrary PHP code via the language parameter.
syscp team syscp