Project Alumni Index.PHP Act Parameter Local File Include Vulnerability

info
discussion
exploit
solution
references

Project Alumni Index.PHP Act Parameter Local File Include Vulnerability

Project Alumni is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.

Exploiting this issue may allow an unauthorized user to view files and execute local scripts.

Project Alumni 1.0.9 is vulnerable to this issue; other versions may also be affected.