CVE-2008-6592
CVE-2008-6592 affects Thumbsup/Thumbs-Up 1.12 used in LightNEasy “no database” (flat) and SQLite 1.2.2 and earlier. The issue is a directory traversal vulnerability in the image parameter, exploitable via a modified cache_dir containing a %00 (encoded null byte), allowing remote attackers to copy...