CVE-2005-1898

The passthrough functionality in phpThumb.php in phpThumb() before 1.5.4 allows remote attackers to read files that are not images.

Date published : 2005-06-08

http://www.securityfocus.com/bid/13842

http://sourceforge.net/project/shownotes.php?release_id=330469