form.php in PMOS Help Desk 2.4 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to conduct eval injection attacks and execute arbitrary PHP code via the options array parameter.
https://www.exploit-db.com/exploits/4789
https://exchange.xforce.ibmcloud.com/vulnerabilities/39274
http://www.vupen.com/english/advisories/2007/4321
http://www.securityfocus.com/bid/27032