download.php in McGallery 0.5b allows remote attackers to read arbitrary files and obtain script source code via the filename parameter.
Max CVSS
5.0
EPSS Score
1.02%
Published
2007-03-16
Updated
2017-10-11
1 vulnerabilities found