CVE-2010-4406
Brunetton LittlePhpGallery 1.0.2 - Path Traversal via Repertoire Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2010-4406. PoCs published by kire bozorge khavarmian.
AI-analyzed exploit summary This exploit demonstrates a local file inclusion vulnerability in littlePhpGallery 1.0.2, allowing an attacker to traverse directories and disclose arbitrary files on the server.
Description
Directory traversal vulnerability in gallery.php in Brunetton LittlePhpGallery 1.0.2, when magic_quotes_gpc is disabled, allows remote attackers to list, include, and execute arbitrary local files via a ..// (dot dot slash slash) in the repertoire parameter.
Exploits (1)
This exploit demonstrates a local file inclusion vulnerability in littlePhpGallery 1.0.2, allowing an attacker to traverse directories and disclose arbitrary files on the server.