Tux25

**Name of the Vulnerable Software and Affected Versions** GPhotos version 1.5 **Description** The issue allows remote attackers to obtain sensitive information via an invalid `rep` parameter in the `index.php` file, which reveals the full path in an error message. **Recommendations** For GPhotos version 1.5, consider validating and sanitizing the `rep` parameter to prevent the disclosure of sensitive information. As a temporary workaround, restrict access to the `index.php` file to minimize the risk of exploitation.