CVE-2009-0294

Name of the Vulnerable Software and Affected Versions WB News version 2.0.1

Description The issue allows remote attackers to execute arbitrary PHP code when register globals is enabled. This is achieved by providing a URL in the config[installdir] parameter to various PHP files, including "search.php", "archive.php", "comments.php", and "news.php", as well as "News.php", "SendFriend.php", "Archive.php", and "Comments.php" in the base directory. The estimated number of potentially affected devices and details about real-world incidents are not specified.

Recommendations For WB News version 2.0.1, consider disabling the config[installdir] parameter or restricting access to the mentioned PHP files until a patch is available. Additionally, disabling register globals can help mitigate the risk of exploitation. Avoid using the config[installdir] parameter in the affected API endpoints, such as "search.php", "archive.php", "comments.php", and "news.php", as well as "News.php", "SendFriend.php", "Archive.php", and "Comments.php" in the base directory, until the issue is resolved.