PHP remote file inclusion vulnerability in function.php in arabhost allows remote malicious users to execute arbitrary PHP code via a URL in the adminfolder parameter.
delmaa.com arabhost