info
discussion
exploit
solution
references
PHPNews SQL Injection Vulnerability
Solution:
The vendor has released version 1.2.4 of the package to resolve this issue:
PHPNews PHPNews 1.2.3
PHPNews phpnews_1-2-4.zip
http://prdownloads.sourceforge.net/newsphp/phpnews_1-2-4.zip?download
Privacy Statement
Copyright 2010, SecurityFocus
