ttCMS 2.2 / ttForum 1.1 News.php template Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/7542/info A remote file include vulnerability has been reported for both ttForum and ttCMS. Due to insufficient sanitization of some user-supplied variables by the 'News.php' and 'Install.php' scripts, it is possible for ...