Kietu Hit.PHP Remote File Inclusion Vulnerability

info
discussion
exploit
solution
references

Kietu Hit.PHP Remote File Inclusion Vulnerability

Kietu may permit remote attackers to specify the include path for a configuration file. An attacker may exploit this to include a malicious PHP script from a remote host, resulting in execution of arbitrary commands with the privileges of the webserver process.