A vulnerability has been found in PHP-Charts 1.0 and classified as critical. Affected by this vulnerability is the function eval of the file wizard/url.php of the component GET Parameter Handler. The manipulation leads to improper neutralization of directives in dynamically evaluated code. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is known as CVE-2013-10070. The attack can be launched remotely. Furthermore, there is an exploit available.