CVE-2006-2295
CVE-2006-2295 describes a directory traversal vulnerability in Dynamic Galerie 1.0. The flaw allows remote attackers to access arbitrary files by supplying an absolute path in the pfad parameter to (1) index.php or (2) galerie.php. The root cause is insufficient validation/sanitization of the pat...