CVE-2007-1478
CVE-2007-1478 affects McGallery 0.5b where download.php can be abused to read arbitrary files and reveal script source code via the filename parameter. This is a remote-access risk (attack surface via web requests) that enables partial confidentiality loss. The available documents describe the vu...