CVE-2006-6613
The CVE-2006-6613 issue affects phpAlbum 0.4.1 Beta 6 and earlier, where language.php can include arbitrary local files due to a directory traversal via pa_lang[include_file] when magic_quotes_gpc is disabled and register_globals is enabled. The root cause is improper handling of the include_file...