CVE-2009-0294
CVE-2009-0294 involves multiple PHP remote file inclusion vulnerabilities in WB News 2.0.1. The issue arises when register_globals is enabled, allowing remote code execution via a URL in config[installdir] for files in base/ and admin/ (e.g., search.php, archive.php, comments.php, news.php, News....