This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote web server hosts a PHP script that is affected by a local
file inclusion vulnerability.
The remote Western Digital Arkeia device hosts a PHP script that is
affected by a local file inclusion vulnerability. A remote,
unauthenticated attacker can exploit this issue to read or execute
arbitrary files by crafting a request with directory traversal
sequences in the 'lang' cookie.
See also :
Upgrade to version 10.2.9 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : true