Sn!Per.S!Te Hacker

**Name of the Vulnerable Software and Affected Versions** Linker IMG versions 1.0 and earlier **Description** The issue allows remote attackers to read and execute arbitrary local files. This can be achieved via a URL in the `cook lan` cookie parameter, which is associated with the `$lan dir` variable, or possibly the `Sdb type` parameter. **Recommendations** For versions 1.0 and earlier, consider restricting access to the `index.php` file until a fix is available. As a temporary workaround, avoid using the `cook lan` cookie parameter and the `Sdb type` parameter in the affected URL.

**Name of the Vulnerable Software and Affected Versions** JV2 Folder Gallery version 3.1 **Description** A remote file inclusion issue in the gallery.php file of JV2 Folder Gallery allows remote attackers to execute arbitrary PHP code via a URL in the `lang file` parameter. **Recommendations** For JV2 Folder Gallery version 3.1, consider restricting access to the `gallery.php` file or the `lang file` parameter to minimize the risk of exploitation until a patch is available.