GraFX MiniCWB 'LANG' Parameter Multiple Remote File Include Vulnerabilities

GraFX MiniCWB is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data.

Exploiting these issues may allow an attacker to compromise the application and the computer; other attacks are also possible.

MiniCWB 2.3.0 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus