CVE-2007-0329

CVE-2007-0329 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

download.php in Joonas Viljanen JV2 Folder Gallery allows remote attackers to read sensitive files via a relative pathname in the file parameter, as demonstrated by config/gallerysetup.php. NOTE: this issue might be resultant from a directory traversal vulnerability.

Learn more about our Web Application Penetration Testing UK.