Directory traversal vulnerability in main.php in phpAlbum 0.4.1.16 and earlier allows remote attackers to read arbitrary files via a … (dot dot) in the var1 parameter.
CPE | Name | Operator | Version |
---|---|---|---|
phpalbum | eq | 0.3.1 fix2 | |
phpalbum | eq | 0.4.1-14 fix3 | |
phpalbum | eq | 0.4.1-14 fix5 | |
phpalbum | eq | 0.3.0 | |
phpalbum | eq | 0.4.1.14 | |
phpalbum | eq | 0.4.1-14 fix2 | |
phpalbum | eq | 0.4.1.15 | |
phpalbum | eq | 0.4.1-14 | |
phpalbum | eq | 0.2.2 | |
phpalbum | eq | 0.3.1 |