Directory traversal

download.php in Joonas Viljanen JV2 Folder Gallery allows remote attackers to read sensitive files via a relative pathname in the file parameter, as demonstrated by config/gallerysetup.php. NOTE: this issue might be resultant from a directory traversal vulnerability...

JV2 Folder Gallery 3.0 - 'download.php' Remote File Disclosure

/ Script Name :JV2 Folder Gallery Script site :www.jv2.net Discovered by :SaO Exploit Coded by :PeTrO Credits To soulreaver,Kuz3y Compile: Visual C++ or DevC++ / include include include pragma commentlib,"ws232.lib" int mainint argc, char argv char gelenveri1000; char sendCommand1000; int...