Multiple PHP remote file inclusion vulnerabilities in Web News 1.1 allow remote malicious users to execute arbitrary PHP code via a URL in the config[root_ordner] parameter to (1) index.php, (2) news.php, or (3) feed.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mapos scripts web news 1.1 |