CVE-2005-1325 Information

Description

set_lang.php in phpMyVisites 1.3 allows remote attackers to read and include arbitrary files via the mylang parameter.

Reference

http://cvs.sourceforge.net/viewcvs.py/phpmyvisites/phpmyvisites/include/set_lang.php?r1=1.5&r2=1.6 http://marc.info/?l=bugtraq&m=111454298603060&w=2 http://www.securityfocus.com/bid/13370