CVE-2008-3293 | EZWebAlbum 1.0 download.php dlfilename path traversal (EDB-6112 / XFDB-43920)
A vulnerability was found in EZWebAlbum 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file download.php. The manipulation of the argument dlfilename leads to path traversal.
This vulnerability is known as CVE-2008-3293. The attack can be launched remotely. Furthermore, there is an exploit available.