CVE-2009-2184
CVE-2009-2184 affects Gravy Media Photo Host 1.0.8, with an absolute path traversal vulnerability in forcedownload.php. The underlying issue allows remote attackers to read arbitrary files by supplying an encoded "/" in the file parameter. According to the NVD entry, the vulnerability has a Base ...