source: wwwsecurityfocuscom/bid/1650/info
The explorerphp script within phpPhotoAlbum 099 and possibly previous versions are vulnerable to directory traversal By requesting a URL composed of explorerphp and the / string in the value of the "folder" variable it is possible for a remote user to and gain read access to any file or bro ...