Lotus Core CMS 1.0.1 allows authenticated Local File Inclusion of .php files via directory traversal in the index.php page_slug parameter.Referenceshttps://www.exploit-db.com/exploits/47985
