I-RATER Platinum Config_settings.TPL.PHP Remote File Include Vulnerability

I-RATER Platinum Config_settings.TPL.PHP Remote File Include Vulnerability

This issue can be exploited through a web client.

The following proof of concept is available; exploit code has also been provided:

/data/vulnerabilities/exploits/i-rater-config_settings.tpl.php-rce.php
/data/vulnerabilities/exploits/i-rater-config_settings.tpl.php-rce.txt