info
discussion
exploit
solution
references
dForum Multiple Remote File Include Vulnerabilities
This issue can be exploited through a web client.
The following example URI demonstrates one of these issues:
http://www.example.com/verwalten.php?DFORUM_PATH=[file]
Privacy Statement
Copyright 2010, SecurityFocus
