A vulnerability has been identified in OZJournals, which could be exploited by attackers to gain knowledge of sensitive information. This issue is caused by an input validation error in the "index.php" script that does not validate the "id" parameter before being passed as an argument to a "file_get_contents()" call, which could be exploited by malicious people to disclose portions of arbitrary files via directory traversal attacks.
Vulnerable Products
Vulnerable Software: OZJournals version 2.1.1 and prior
