Vulnerabilities for Gallery script lite (...) - CXSECURITY.COM

Vulnerabilities for 'Gallery script lite'

2008-04-11

CVE-2008-1730

CWE-22

Directory traversal vulnerability in download.html in ARWScripts Gallery Script Lite (aka gallery-script-lite or Free Photo Gallery Site Script), as of 20080411, allows remote attackers to read arbitrary local files via directory traversal sequences in the path parameter.

>>> Vendor: Arwscripts 2 Products

Gallery script lite

Copyright 2024, cxsecurity.com