Full title: PHP-Fusion 7.02.05 XSS / LFI / SQL Injection Vulnerabilities 
Category: web applications
Platform: php
PHP-Fusion version 7.02.05 suffers from insecure backup handling, cross site scripting, local file inclusion, and remote SQL injection vulnerabilities.

# 0day.today @ http://0day.today/