Public Media Manager newstopic_inc.php Remote File Include Vulnerability

Public Media Manager newstopic_inc.php Remote File Include Vulnerability

Public Media Manager is prone to a remote file-include vulnerability because the application fails to properly sanitize user-supplied input before using it in a PHP 'include()' function call.

An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the privileges of the webserver process.

This issue affects Public Media Manager 1.3; other versions may also be vulnerable.