Multiple PHP remote file inclusion vulnerabilities in aWeb Labs aWebNews 1.5 allow remote malicious users to execute arbitrary PHP code via a URL in the path_to_news parameter to (1) listing.php or (2) visview.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
aweb labs awebnews 1.5 |