KSEMAIL 'index.php' Multiple Local File Include Vulnerabilities

info
discussion
exploit
solution
references

KSEMAIL 'index.php' Multiple Local File Include Vulnerabilities

KSEMAIL is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input.

Exploiting these issues may allow an attacker to access potentially sensitive information and execute arbitrary local scripts in the context of the affected application.