Google Search: filetype:php intitle:”paNews v2.0b4″
urban rates this entry 6 out of 10.
Submitted: 2005-03-20 16:46:16
Added by: urban
PaNews is reported prone to a remote PHP script code execution vulnerability. It is reported that PHP script code may be injected into the PaNews software through the ‘showcopy’ parameter of the ‘admin_setup.php’ script. http://www.securityfocus.com/bid/12611