Script source code disclosure

Description
  • It is possible to read the source code of this script by using script filename as a parameter. It seems that this script includes a file which name is determined using user-supplied data. This data is not properly validated before being passed to the include function.
Remediation
  • Analyze the source code of this script and solve the problem.
References