CVE-2014-10037 Information

Description

Directory traversal vulnerability in DomPHP 0.83 and earlier allows remote attackers to have unspecified impact via a .. (dot dot) in the url parameter to photoalbum/index.php.

Reference

http://osvdb.org/show/osvdb/102204 http://www.exploit-db.com/exploits/30865 https://exchange.xforce.ibmcloud.com/vulnerabilities/90582 Directory traversal vulnerability in DomPHP 0.83 and earlier allows remote attackers to have unspecified impact via a .. (dot dot) in the url parameter to photoalbum/index.php.