Campsite 2.6.1 implementation/management/db_connect.php g_documentRoot Parameter Remote File Inclusion. CVE-2006-5911. Webapps exploit for php platform
source: http://www.securityfocus.com/bid/23874/info Campsite is prone to multiple remote file-include vulnerabilities. Exploiting this issue allows remote attackers to execute code in the context of the webserver. This issue affects Campsite 2.6.1. Earlier versions may also be affected. http://www.example.com/db_connect.php?g_DocumentRoot=shell.txt?