This host is running Cyclope Employee Surveillance Solution and is prone to local file inclusion vulnerability.

Successful exploitation will allow attacker to obtain potentially sensitive information. Impact Level: Application

Update to version 6.2.1 or later, For updates refer to http://www.cyclope-series.com

An improper validation of user-supplied input via the 'pag' parameter to 'help.php', that allows remote attackers to view files and execute local scripts in the context of the webserver.

Cyclope Employee Surveillance Solution versions 6.0 to 6.0.2

• http://packetstormsecurity.org/files/115590/cyclopees-sqllfi.txt
• http://www.exploit-db.com/exploits/20545/

---

Updated on 2015-03-25