Vulnerability Details: CSRF/Local File Inclusion (LFI) in Amministrazione Aperta
Earlier today, a report was released claiming there was a local file inclusion (LFI) vulnerability in the WordPress plugin Amministrazione Aperta. While the “vulnerable code” shown looks like it could permit local file inclusion (LFI), the proof of concept doesn’t work.
…