2 matches found
CVE-2007-4092
CVE-2007-4092 affects iFoto 1.0.1 and earlier. A directory traversal vulnerability exists in index.php where the dir parameter can be manipulated with .. to list arbitrary directories and, possibly, download arbitrary photos. This is the core impact described across multiple sources (NVD, CVE lis...
CVE-2007-4092
Directory traversal vulnerability in index.php in iFoto 1.0.1 and earlier allows remote attackers to list arbitrary directories, and possibly download arbitrary photos, via a .. dot dot in the dir parameter...