Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in SweetRice 0.5.4, 0.5.3, and earlier allow remote attackers to execute arbitrary PHP code via a URL in the rootdir parameter to 1 plugin/subscriber/inc/post.php and 2 as/lib/newsmodify.php...