Newsportal versions 0.36 and below are susceptible to a remote file inclusion vulnerability.
32c4e976a967338de5ae840b79ab388e3060aed45b545db64ded9e4d59ab81cd
A code injection vulnerability exists in NewsPortal. Upgrading to 0.37 fixes this flaw.
51dc033133e461b6d8fa03e2fd0cd31c8649f9e626213d40d6cfb5ce3311b46b