Black Hat

**Name of the Vulnerable Software and Affected Versions** DirPHP version 1.0 **Description** The issue allows remote attackers to read arbitrary files by providing a full pathname in the `phpfile` parameter to the "index.php" endpoint. **Recommendations** For DirPHP version 1.0, consider restricting access to the `phpfile` parameter in the "index.php" endpoint to prevent arbitrary file reading until a patch is available.