PHP remote file inclusion vulnerability in install.php in mcNews 1.3 and previous versions allows remote malicious users to execute arbitrary PHP code by modifying the l parameter to reference a URL on a remote web server that contains the code, a different vulnerability than CVE-2005-0720.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mcnews mcnews 1.3 |
||
mcnews mcnews 1.1a |
||
mcnews mcnews 1.2 |
||
mcnews mcnews 1.0 |
||
mcnews mcnews 1.1 |