Vulnerability Details CVE-2008-1730
Directory traversal vulnerability in download.html in ARWScripts Gallery Script Lite (aka gallery-script-lite or Free Photo Gallery Site Script), as of 20080411, allows remote attackers to read arbitrary local files via directory traversal sequences in the path parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.028
EPSS Ranking 85.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/29746
- http://www.osvdb.org/44253
- http://www.securityfocus.com/bid/28718
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41742
- https://www.exploit-db.com/exploits/5419
- http://secunia.com/advisories/29746
- http://www.osvdb.org/44253
- http://www.securityfocus.com/bid/28718
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41742
- https://www.exploit-db.com/exploits/5419
Products affected by CVE-2008-1730
-
cpe:2.3:a:arwscripts:gallery_script_lite:*