Directory traversal vulnerability in index.php in AdaptWeb 0.9.2 allows remote malicious users to read arbitrary files via a .. (dot dot) in the newlang parameter.
adaptweb adaptweb 0.9.2