EIP-2026-107692

This exploit demonstrates a Local File Inclusion (LFI) vulnerability in i-doIT 0.9.9-4 by manipulating the 'lang' parameter to traverse directories and include arbitrary files, such as 'win.ini'. The PoC URL shows directory traversal sequences to access files outside the intended directory.