Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Softnews Media Group DataLife Engine allow remote attackers to execute arbitrary PHP code via a URL in the rootdir parameter to 1 init.php and 2 Ajax/editnews.php. NOTE: some of these details are obtained from third party information...

Remote File Include In Script SoftNews Media Group

By Hasadya Raed Contact : [email protected] ------------------------------------ Script : SoftNews Media Group Dork : "Copyright © 2004,2006 SoftNews Media Group" Greetz : Only To Security Focus ------------------------------------ B.Files : init.php editnews.php ----------------------------------...