Ajax Chat 0.1 - 'operator_chattranscript.php?chatid' Traversal Arbitrary File Access
source: https://www.securityfocus.com/bid/19238/info AJAX Chat is prone to both a directory-traversal vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the directory-traversal issue to retrieve arbitrary files...