CVE-2008-0259

2008-01-1519:00:00

mitre

www.cve.org

6.9 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.8%

JSON

Multiple directory traversal vulnerabilities in _mg/php/mg_thumbs.php in minimal Gallery 0.8 allow remote attackers to read arbitrary files via a … (dot dot) in the (1) thumbcat and (2) thumb parameters.

References

secunia.com/advisories/28391

www.securityfocus.com/bid/27265

exchange.xforce.ibmcloud.com/vulnerabilities/39649

www.exploit-db.com/exploits/4902