CVE-2005-1898 Information

Description

The passthrough functionality in phpThumb.php in phpThumb() before 1.5.4 allows remote attackers to read files that are not images.

Reference

http://secunia.com/advisories/15534 http://sourceforge.net/project/shownotes.php?release_id=330469 http://www.securityfocus.com/bid/13842