The vulnerable file - lionking.org/~hugabug/avatars.php is now avatars.txt
Do not use the PHP function in the File Upload
By Radex