CVE-2005-1998

Directory traversal vulnerability in admin.php in McGallery 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the lang parameter.

Date published : 2005-06-20

http://www.securityfocus.com/bid/13963

http://marc.info/?l=bugtraq&m=111885505600482&w=2