mcGallery admin.php lang Parameter Traversal Arbitrary File Access
Remote / Network Access
Loss of Confidentiality
McGallery contains a flaw that allows an authenticated remote attacker to access files outside of the web path. The issue is due to the admin.php script not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the lang variable.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.