TinyWebGallery (TWG) 1.8.9 and previous versions contains a full path disclosure vulnerability which allows remote malicious users to obtain sensitive information through the parameters "twg_browserx" and "twg_browsery" in the page image.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tinywebgallery tinywebgallery |