EIP-2026-114461

This exploit demonstrates a remote arbitrary file retrieval vulnerability in XOOPS <= 2.3.3. It leverages a vulnerable read_file() function in module_icon.php, allowing an attacker to read system or configuration files by manipulating the $mydirpath variable when register_globals is enabled and magic_quotes_gpc is disabled.