PHP remote file inclusion vulnerability in archive.php in Fantastic News 2.1.2 allows remote malicious users to include arbitrary files via the CONFIG[script_path] variable. NOTE: 2.1.4 was also reported to be vulnerable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fscripts fantastic news 2.1.4 |
||
fscripts fantastic news 2.1.1 |
||
fscripts fantastic news 2.1.2 |