Severity: Critical
Netsparker detected code execution via local file inclusion, which occurs when a file from the target system is injected into the attacked page and interpreted as code.
At the beginning of the attacking phase, Netsparker made an HTTP request which contained custom payload and saw the output of execution of it at this page. This means this code has been executed, and this vulnerability generally happens with inclusion of log files by LFI-vulnerable PHP scripts.
/proc/self/
functionality in Linux systems where possible.