sflog! 'index.php' Multiple Local File Include Vulnerabilities

info
discussion
exploit
solution
references

sflog! 'index.php' Multiple Local File Include Vulnerabilities

The 'sflog!' program is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input.

Exploiting these issues may allow an attacker to access potentially sensitive information in the context of the affected application.

These issues affect sflog! 0.96; other versions may also be affected.