PHP remote file inclusion vulnerability in auth/phpbb.inc.php in Shen Cheng-Da PHP News Reader (aka pnews) 2.6.4 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the CFG[auth_phpbb_path] parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php news reader php news reader 2.6.2 |
||
php news reader php news reader |