ACGV News PathNews Parameter Multiple Remote File Include Vulnerabilities

info
discussion
exploit
solution
references

ACGV News PathNews Parameter Multiple Remote File Include Vulnerabilities

ACGV News is prone to multiple remote file-include vulnerabilities.

Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks are also possible.

ACGV News 0.9.1 and previous versions are vulnerable.