info
discussion
exploit
solution
references
PHPNews News.PHP SQL Injection Vulnerability
Solution:
The vendor has released version 1.2.6 of the package to resolve this issue:
PHPNews PHPNews 1.2.5
PHPNews phpnews_1-2-6.zip
http://prdownloads.sourceforge.net/newsphp/phpnews_1-2-6.zip?download
Privacy Statement
Copyright 2010, SecurityFocus
