Vulnerabilities > CVE-2000-0902 - Unspecified vulnerability in Nathan Purciful PHPphotoalbum 0.9.9

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
nathan-purciful
NVD
Published: 2000-12-19
Updated: 2017-12-19

Summary

getalbum.php in PhotoAlbum before 0.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) attack.

Vulnerable Configurations

Part Description Count
Application
Nathan_Purciful
1

References