athlon1600/php-proxy-app is vulnerable to local file inclusion (LFI) attacks. The vulnerability exists due to the ability to include file:///
in the value of q
, which allows unauthenticated users to read local files.
CPE | Name | Operator | Version |
---|---|---|---|
athlon1600/php-proxy-app | le | 3.0.0 |