Sourcecodester · Modern Image Gallery App · CVE-2026-3695
**Name of the Vulnerable Software and Affected Versions**
SourceCodester Modern Image Gallery App version 1.0
**Description**
A path traversal issue exists in SourceCodester Modern Image Gallery App version 1.0. The issue is located in the `/delete.php` file, specifically affecting an unknown function. Manipulation of the `filename` argument allows for path traversal, enabling remote attacks. The exploit details have been publicly disclosed.
**Recommendations**
As a temporary workaround, consider restricting access to the `/delete.php` file until a patch is available.