Membrepass Variable.PHP Remote File Include Vulnerability

info
discussion
exploit
solution
references

Membrepass Variable.PHP Remote File Include Vulnerability

Membrepass is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied data.

This may facilitate the compromise of the application and the underlying system; other attacks are also possible.