Security hole in Incontent 3.0

Date 2005/2/1 11:24:04 | Topic: Modules

A vulnerability was reported in the XOOPS third party Incontent module. A remote user can view the content of PHP files
The module does not properly validate user-supplied input in the 'url' parameter
The author web site is down also please don't use this module before correcting the hole.

source : http://www.securitytracker.com

thanks




This article comes from XOOPS Web Application System
https://xoops.org

The URL for this story is:
https://xoops.org/modules/news/article.php?storyid=2038