XOOPS Multiple Module Spaw_Control.Class.PHP Remote File Include Vulnerability

info
discussion
exploit
solution
references

XOOPS Multiple Module Spaw_Control.Class.PHP Remote File Include Vulnerability

Multiple XOOPS modules are prone to a remote file-include vulnerability because they fail to sufficiently sanitize user-supplied input.

Exploiting this issue may allow an attacker to compromise the applications and the underlying system; other attacks are also possible.