CVE-2007-4092

2007-07-30T16:17:00
ID CVE-2007-4092
Type cve
Reporter NVD
Modified 2008-10-11T01:40:22

Description

Directory traversal vulnerability in index.php in iFoto 1.0.1 and earlier allows remote attackers to list arbitrary directories, and possibly download arbitrary photos, via a .. (dot dot) in the dir parameter.