class.plx.admin.php in PluXml 5.7 allows malicious users to execute arbitrary PHP code by modify the configuration file in a linux environment.
pluxml pluxml 5.7