Cafelog b2 B2MenuTop Script B2INC Variable Include Vulnerability

A remote file include vulnerability has been reported in Cafelog b2. Due to insufficient sanitization of user-supplied values in the b2menutop.php script, it is possible for a remote attacker to influence the location of included files.


 

Privacy Statement
Copyright 2010, SecurityFocus