|
P-News P-news.PHP Remote File Include Vulnerability
P-News is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. A successful exploit of this issue allows an attacker to execute arbitrary server-side script code on an affected computer with the privileges of the webserver process. This may facilitate unauthorized access. Versions 1.16 and 1.17 are reported vulnerable to this issue; other versions may also be affected. |
|
|
Privacy Statement |
