Cyclope Employee Surveillance Solution Local File Inclusion Vulnerability

Summary
This host is running Cyclope Employee Surveillance Solution and is prone to local file inclusion vulnerability.
Impact
Successful exploitation will allow attacker to obtain potentially sensitive information. Impact Level: Application
Solution
Update to version 6.2.1 or later, For updates refer to http://www.cyclope-series.com
Insight
An improper validation of user-supplied input via the 'pag' parameter to 'help.php', that allows remote attackers to view files and execute local scripts in the context of the webserver.
Affected
Cyclope Employee Surveillance Solution versions 6.0 to 6.0.2
References