Exhibit Engine 1.22 fetchsettings.php toroot Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/20793/info Exhibit Engine Software is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. A successful exploit of these issues allows an attacker to execute...

Free FAQ 1.0 - 'index.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/20621/info Free Faq is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. A successful exploit of this issue allows an attacker to execute arbitrary server-side script code on an affected computer with...