A vulnerability in the component /languages/index.php of WBCE CMS v1.5.2 allows malicious users to execute arbitrary code via a crafted PHP file.
wbce wbce cms 1.5.2