CVE-2001-0900
Gallery < 1.2.3 - Directory Traversal via Include Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2001-0900. PoCs published by Cabezon Aurelien.
AI-analyzed exploit summary The exploit describes a directory traversal vulnerability in Bharat Mediratta Gallery, allowing remote attackers to read arbitrary files via '../' sequences in the 'include' parameter. No actual exploit code is provided, only a description and example URL.
Description
Directory traversal vulnerability in modules.php in Gallery before 1.2.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the include parameter.
Exploits (1)
The exploit describes a directory traversal vulnerability in Bharat Mediratta Gallery, allowing remote attackers to read arbitrary files via '../' sequences in the 'include' parameter. No actual exploit code is provided, only a description and example URL.