imageVue 16.1 allows remote attackers to obtain folder permission settings via a direct request to dir.php, which returns an XML document that lists folders and their permissions.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Imagevue |
Imagevue |
0.16.1 |
0.16.1 |
References