2 matches found
CVE-2000-0919
Directory traversal vulnerability in PHPix Photo Album 1.0.2 and earlier allows remote attackers to read arbitrary files via a .. dot dot attack...
CVE-2000-0919
CVE-2000-0919 is a directory traversal vulnerability in PHPix Photo Album 1.0.2 and earlier that allows remote attackers to read arbitrary files by prefixing a path with ..%2F..%2F (dot-dot). OpenVAS/Nessus entries confirm the issue with an example payload such as /Album/?mode=album&album=..%2F.....