CVE-2007-6082

Direct static code injection vulnerability in Sciurus Hosting Panel, affecting acp/savenews.php (possibly version 2.0.3). The issue lets an attacker inject arbitrary PHP code via the filecontents parameter, which can be executed when accessing includes/news.php. Root cause: improper handling of f...