CVE-2008-1730

Directory traversal vulnerability in download.html in ARWScripts Gallery Script Lite (aka gallery-script-lite or Free Photo Gallery Site Script), as of 20080411, allows remote attackers to read arbitrary local files via directory traversal sequences in the path parameter.

Date published : 2008-04-11

http://www.securityfocus.com/bid/28718

https://www.exploit-db.com/exploits/5419