Unrated severityNVD Advisory· Published Nov 22, 2006· Updated Jun 16, 2026
CVE-2006-6068
CVE-2006-6068
Description
Directory traversal vulnerability in the cached_album function in functions.php for mAlbum 0.3 and earlier allows remote attackers to list filenames of arbitrary images via a .. (dot dot) in the gal parameter to index.php.
Affected products
1Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.