phpList vulnerability

[phplist <info () phplist com>]

phpList is a feature rich newsletter application written in PHP.

phpList has a local file include vulnerability. The vulnerability has
already been exploited.

affected versions: any version up to including 2.10.7

fixed in version 2.10.8

Related links:
www.phplist.com phpList homepage
http://sourceforge.net/projects/phplist Sourceforge Project page.