NuytsTech Security

CVE-2007-4259

by ·

EZPhotoSales 1.9.3 and earlier allows remote attackers to download arbitrary image files via (1) a direct request for a URL under OnlineViewing/galleries/ or (2) navigation of the gallery user interface with JavaScript disabled.

Date published : 2007-08-08

http://www.securityfocus.com/bid/25323

http://www.securityfocus.com/archive/1/475678/100/0/threaded

Tags: