RoseOnlineCMS Op Local File Include Vulnerability

RoseOnlineCMS Op Local File Include Vulnerability

RoseOnlineCMS is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data.

Exploiting this issue may allow an attacker to access sensitive information and to execute local script code in the context of the application; this may facilitate other attacks against the affected computer.

RoseOnlineCMS 3 beta2 is vulnerable; other versions may also be affected.