PHP remote file inclusion vulnerability in gallery.php in JV2 Folder Gallery 3.1 allows remote attackers to execute arbitrary PHP code via a URL in the lang_file parameter.Referenceshttp://www.securityfocus.com/bid/40339https://exchange.xforce.ibmcloud.com/vulnerabilities/58807http://www.exploit-db.com/exploits/12688http://packetstormsecurity.org/1005-exploits/jv2foldergallery-rfi.txt
