Open
Description
This bug was found using the portal in the files:
/wechat-broadcast/wechat/Image.php
The parameter "url" it is not sanitized allowing include local or remote files.
Please contact me at advidsec@gmail.com for more info (i send you and email with extended info)