cpe:/a:davlin:thickbox_gallery:2 CVE-2009-1625 2009-05-12T12:30:00.593-04:00 2017-09-28T21:34:28.310-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2009-05-13T09:25:00.000-04:00 BID 34741 SECUNIA 34906 EXPLOIT-DB 8546 Directory traversal vulnerability in index.php in Thickbox Gallery 2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ln parameter.