The Magic Photo Storage Website is vulnerable to multiple remote file-include vulnerabilities. These vulnerabilities are a result of insufficient sanitization of user-supplied data. Exploiting these vulnerabilities can allow an attacker to compromise the application and the underlying system. Other attacks may also be possible.