Full title: Wordpress Funny4You plugin 1.0 Local File Include Vulnerability 
Category: web applications
Platform: php
I found vulnerable Code in /funny4you/funny4you.php line 33. The Parameter $server isn't declared before include. So an attacker can execute some local code about it.

# 0day.today @ http://0day.today/