Splatt Forum BBCode_Ref.PHP Local File Include Vulnerability

Splatt Forum BBCode_Ref.PHP Local File Include Vulnerability

Splatt Forum is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.

Exploiting this issue may allow an unauthorized user to view files and execute local scripts.

Version 4.0 RC1 is vulnerable; other versions may also be affected.