EIP-2026-107389

This exploit demonstrates a Local File Inclusion (LFI) vulnerability in GetSimple CMS 2.01. It allows an authenticated admin to read arbitrary files on the server by manipulating the 'file' parameter in the download.php script.