Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:12704
HistoryMay 17, 2006 - 12:00 a.m.

Newsportal: code injection vulnerability

2006-05-1700:00:00
vulners.com
8

Hello,

there is a code injection vulnerability in NewsPortal that could give everyone the ability to execute php
code on the webserver where newsportal is installed.

This bug should only occur if "register_globals=on" is set in the php.ini.

To remove the problem:

Florian Amrhein.