CVE-2006-6273 Information

Description

sp_index.php in Simple PHP Gallery 1.1 allows remote attackers to obtain sensitive information via an invalid dir parameter which reveals the path in an error message.

Reference

http://securityreason.com/securityalert/1967 http://www.securityfocus.com/archive/1/452555/100/100/threaded http://www.securityfocus.com/archive/1/455359/100/0/threaded