PSnews CVE-2007-3772 File-Upload Vulnerability

PSnews CVE-2007-3772 File-Upload Vulnerability

PSnews is prone to a file-upload vulnerability. Directory traversal vulnerability in news/show.php in PsNews 1.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the newspath parameter.