Report.php fails to sanitize user input data on StartingDirectory parameter when used in an include.
CVE Link
Exploit Type - Old
Exploits/Remote File Inclusion/Known Vulnerabilities
Exploit Type
Product Name