arfis

automated Remote File Inclusion search

RFI (0.2): imgadmin September 13, 2007

Filed under: RFI — arfis @ 10:15 pm

Project Name: imgadmin
Project Link: http://sourceforge.net/projects/imgadmin/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/imgadmin/imgadmin-1.1.zip
RFI Info:
File: tmp/imgadmin-1.1/imgadmin/examples/includeDynamicGalleryHTML.php
Line: 11
Vuln Code: include($_SERVER[DOCUMENT_ROOT].”/imgadmin/includeGallery.php”);

File: tmp/imgadmin-1.1/imgadmin/examples/includeStaticGalleryHTML.php
Line: 10
Vuln Code: include($_SERVER[DOCUMENT_ROOT].”/imgadmin/includeGallery.php”);

(found with version 0.2 – 662 projects processed so far)