Multiple directory traversal vulnerabilities in header.php in RicarGBooK 1.2.1 allow remote malicious users to include and execute arbitrary local files via a .. (dot dot) in (1) a lang cookie or (2) the language parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ricargbook ricargbook 1.2.1 |