Script source code disclosure

Description

It is possible to read the source code of this script by using script filename as a parameter. It seems that this script includes a file which name is determined using user-supplied data. This data is not properly validated before being passed to the include function.

Remediation

Analyze the source code of this script and solve the problem.

References
Severity
Classification
Tags
  • Source Code Disclosure  Information Disclosure