CVE-2006-6273 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-6273

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

sp_index.php in Simple PHP Gallery 1.1 allows remote attackers to obtain sensitive information via an invalid dir parameter, which reveals the path in an error message.

Affected Software

Name	Vendor	Start Version	End Version
Simple_php_gallery	Paul_griffin	1.1 (including)	1.1 (including)

References

http://securityreason.com/securityalert/1967
http://www.securityfocus.com/archive/1/452555/100/100/threaded
http://www.securityfocus.com/archive/1/455359/100/0/threaded
http://securityreason.com/securityalert/1967
http://www.securityfocus.com/archive/1/452555/100/100/threaded
http://www.securityfocus.com/archive/1/455359/100/0/threaded