Arbitrary File Read Vulnerability in PHPAlbum 0.2.3 and Earlier

Arbitrary File Read Vulnerability in PHPAlbum 0.2.3 and Earlier

CVE-2005-3948 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Directory traversal vulnerability in main.php in PHPAlbum 0.2.3 and earlier allows remote attackers to read arbitrary files via the (1) cmd and (2) var1 parameters.

Learn more about our Web Application Penetration Testing UK.