Directory traversal vulnerability in (1) GinpPictureServlet.java and (2) PicCollection.java in ginp (Java Photo Gallery Web Application) before 0.22 allows remote attackers to read arbitrary files.Referenceshttp://secunia.com/advisories/14373http://sourceforge.net/project/shownotes.php?release_id=307518
