PHPWCMS Spaw_Control.Class.PHP Local File Include Vulnerability

The phpwcms application is prone to a local file-include vulnerability. This may allow unauthorized users to view files and to execute local scripts.

An attacker may also be able to execute arbitrary code by way of uploaded images.

Version 1.2.5-DEV is affected; earlier versions may also be vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus