Apache OFBiz 10.04.x prior to 10.04.02 allows remote malicious users to execute arbitrary code via unspecified vectors.
apache ofbiz 10.04