CVE-2006-4260
Directory traversal vulnerability in index.php in Fotopholder 1.8 allows remote attackers to read arbitrary directories or files via a .. (dot dot) in the path parameter.
Date published : 2006-08-21
http://archives.neohapsis.com/archives/bugtraq/2006-08/0316.html