2006-04-25 14:00:00
mitre
PUBLISHED
Scry Gallery 1.1 allows remote attackers to obtain sensitive information via an invalid p parameter, which reveals the path in an error message.