CVE-2006-1996

Name of the Vulnerable Software and Affected Versions Scry Gallery version 1.1

Description The issue allows remote attackers to obtain sensitive information via an invalid p parameter. This is achieved by revealing the path in an error message.

Recommendations For Scry Gallery version 1.1, consider restricting access to the vulnerable parameter p to minimize the risk of exploitation. As a temporary workaround, avoid using the p parameter in error-prone situations until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.