Gravy-media » Media Photo Host : Security Vulnerabilities, CVEs,
Absolute path traversal vulnerability in forcedownload.php in Gravy Media Photo Host 1.0.8 allows remote attackers to read arbitrary files via an encoded "/" (slash) in the file parameter.
Max CVSS
5.0
EPSS Score
2.01%
Published
2009-06-23
Updated
2017-09-29
1 vulnerabilities found