WMNews index.php base_datapath Parameter PHP Code Execution - Ver2 (CVE-2006-3928)

A code execution vulnerability has been reported in WMNews. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

WMNewsInclude.txt

Advisory: WMNews Remote File Include Vulnerability Release Date: 2006/07/26 Author: uNfz Critical Level: High Contact: [email protected] Vendor: Warta Mikael -------------------- -------------------- Searching / Dork: allinurl: .php?Artid= allinurl: .php?ArtCat= allinurl: wmprint.php allinurl:...