vendor:
FCRing Webringskript
by:
kezzap66345
7.5
CVSS
HIGH
Remote File Inclusion (RFI)
CWE
Product Name: FCRing Webringskript
Affected Version From: FCRing 1.3
Affected Version To: FCRing 1.3
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
2007
FCRing 1.3 Webringskript
The FCRing 1.3 Webringskript has a vulnerability that allows remote attackers to include arbitrary files via the 's_fuss' parameter in fcring.php.
Mitigation:
Apply a patch or update to a newer version of the FCRing Webringskript.