CVE-2004-1796

HotNews 0.7.2 - Remote File Inclusion via config[header] or config[incdir] Parameter

Title source: manual
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2004-1796. PoCs published by team_elite, Officerrr.

AI-analyzed exploit summary This is a writeup describing a Remote File Inclusion (RFI) vulnerability in HotNews 0.7.2. It provides the exploit URL but does not include functional exploit code or payload.

Description

PHP remote file inclusion vulnerability in HotNews 0.7.2 and earlier allows remote attackers to execute arbitrary PHP code via the (1) config[header] parameter to hotnews-engine.inc.php3 or (2) config[incdir] parameter to hnmain.inc.php3.

Exploits (3)

exploitdb WRITEUP VERIFIED
by team_elite · textwebappsphp
https://www.exploit-db.com/exploits/12160

This is a writeup describing a Remote File Inclusion (RFI) vulnerability in HotNews 0.7.2. It provides the exploit URL but does not include functional exploit code or payload.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: HotNews 0.7.2
No auth needed
Prerequisites: Network access to the target · PHP remote file inclusion enabled on the target server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Officerrr · textwebappsphp
https://www.exploit-db.com/exploits/23517

This exploit demonstrates a file inclusion vulnerability in HotNews, allowing remote attackers to execute arbitrary PHP scripts by manipulating the 'config[header]' parameter to include malicious files from an external server.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: HotNews (version not specified)
No auth needed
Prerequisites: Access to the vulnerable HotNews installation · Ability to host a malicious PHP script on an external server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Officerrr · textwebappsphp
https://www.exploit-db.com/exploits/23518

This exploit demonstrates a file inclusion vulnerability in HotNews, allowing remote attackers to execute arbitrary PHP scripts by manipulating the 'config[incdir]' parameter to include malicious files from an attacker-controlled server.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: HotNews (version not specified)
No auth needed
Prerequisites: Network access to the vulnerable HotNews application · Ability to host malicious PHP scripts on an attacker-controlled server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/3332
Exploit, Patch mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/348840
Patch third-party-advisory x_refsource_secunia
http://secunia.com/advisories/10551
Exploit, Patch vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1008608
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/3405
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/14140
Exploit, Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/9357

Scores

EPSS 0.0932
EPSS Percentile 94.8%

Details

Status published
Products (7)
hotnews/hotnews 0.5.3
hotnews/hotnews 0.6.0
hotnews/hotnews 0.6.0_pre
hotnews/hotnews 0.6.1
hotnews/hotnews 0.7.0
hotnews/hotnews 0.7.1
hotnews/hotnews 0.7.2
Published Dec 31, 2004
Tracked Since Feb 18, 2026