Remote File Inclusion Vulnerability in TRG News Script 3.0

Remote File Inclusion Vulnerability in TRG News Script 3.0

CVE-2005-0860 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

PHP remote file inclusion vulnerability in TRG News Script 3.0 allows remote attackers to execute arbitrary PHP code via the dir parameter to (1) article.php, (2) authorall.php, (3) comment.php, (4) display.php, or (5) displayall.php.

Learn more about our Web Application Penetration Testing UK.