Directory traversal vulnerability in download.php in webGENEius GOOP Gallery 2.0.2 allows remote attackers to read or list data from certain files or directories via unspecified vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/29339
http://www.securityfocus.com/archive/1/448946/100/0/threaded
http://www.securityfocus.com/archive/1/448258/100/100/threaded
http://www.securityfocus.com/archive/1/447647/100/0/threaded
http://www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0004
http://securitytracker.com/id?1016983