ScarNews Scarnews.Inc.PHP Local File Include Vulnerability

ScarNews Scarnews.Inc.PHP Local File Include Vulnerability

ScarNews is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.

Exploiting this issue may allow an unauthorized user to view files and execute local scripts.

ScarNews 1.2.1 is vulnerable; other versions may also be affected.