XCMS Multiple Local File Include Vulnerabilities

XCMS Multiple Local File Include Vulnerabilities

XCMS is prone to multiple local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input.

Exploiting these issues may allow an attacker to access potentially sensitive information and execute arbitrary local scripts within the context of the webserver process.

These issues affect XCMS 1.1; other versions may also be affected.