QSF Portal "lang" File Inclusion Vulnerability
Release Date : 2010-02-22
Criticality level : Moderately critical
Impact :Exposure of system information
Exposure of sensitive information
Where : From remote
Solution Status : Vendor Patch
Software : QSF Portal 1.x
A vulnerability has been reported in QSF Portal, which can be exploited by malicious people to disclose sensitive information.
The vulnerability is caused due to the usage of vulnerable Quicksilver Forums code.
Update to version 1.4.5.