HybridAuth 'install.php' Remote Code Execution Vulnerability

Summary
This host is installed with HybridAuth and is prone to remote code execution vulnerability.
Impact
Successful exploitation will allow attacker to execute arbitrary code in the affected system. Impact Level: Application
Solution
Upgrade to HybridAuth version 2.2.2 or later, For updates refer http://hybridauth.sourceforge.net
Insight
Flaw exists because the hybridauth/install.php script does not properly verify or sanitize user-uploaded files.
Affected
HybridAuth version 2.1.2 and probably prior.
Detection
Send a crafted exploit string via HTTP GET request and check whether it is able to execute the code remotely.
References