CVE-2007-0329

2007-01-18T02:28:00
ID CVE-2007-0329
Type cve
Reporter cve@mitre.org
Modified 2017-10-19T01:29:00

Description

download.php in Joonas Viljanen JV2 Folder Gallery allows remote attackers to read sensitive files via a relative pathname in the file parameter, as demonstrated by config/gallerysetup.php. NOTE: this issue might be resultant from a directory traversal vulnerability.