Western Digital Arkeia lang Cookie Crafted Local File Inclusion
Medium Nessus Plugin ID 74221
The remote web server hosts a PHP script that is affected by a local file inclusion vulnerability.
The remote Western Digital Arkeia device hosts a PHP script that is affected by a local file inclusion vulnerability. A remote, unauthenticated attacker can exploit this issue to read or execute arbitrary files by crafting a request with directory traversal sequences in the 'lang' cookie.