CVE-2007-4092

2007-07-30T20:17:00
ID CVE-2007-4092
Type cve
Reporter cve@mitre.org
Modified 2018-10-15T21:33:00

Description

Directory traversal vulnerability in index.php in iFoto 1.0.1 and earlier allows remote attackers to list arbitrary directories, and possibly download arbitrary photos, via a .. (dot dot) in the dir parameter.