arfis

automated Remote File Inclusion search

RFI (0.2): SPiD September 14, 2007

Filed under: RFI — arfis @ 1:59 am

Project Name: SPiD
Project Link: http://sourceforge.net/projects/spid/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/spid/spid-1.3.0.tar.gz
RFI Info:
File: tmp/spid-1.3.0.ta/spid/lang/lang.php
Line: 8
Vuln Code: include($lang_path.”lang_EN.php”); $lang = “EN”;

(found with version 0.2 – 2096 projects processed so far)