A vulnerability in the Xerte Online Tools allows for authentication bypass and remote code execution via reinstallation through the /setup/ folder, enabling attackers to reinstall the service to a remote database they control.
https://kb.cert.org/vuls/id/734812
https://github.com/thexerteproject/xerteonlinetoolkits/issues/1532