CVE-2006-6867

CVE-2006-6867 documents multiple PHP remote file inclusion vulnerabilities in Vladimir Menshakov’s buratinable templator (aka bubla) 0.9.1, allowing an attacker to execute arbitrary PHP code via a URL in the bu_dir parameter to bu/bu_claro.php, bu/bu_cache.php, or bu/bu_parse.php. This differs fr...

Bubla 0.9.2 - bu_dir Multiple Remote File Inclusions

Bubla 0.9.2 - budir Multiple Remote File Inclusions DeltasecurityTEAM WwW.Deltasecurity.iR Portal Name = Bubla 0.9.1 Class = Remote File Inclusion Risk = High Remote File Execution Download = http://download.sourceforge.net/pub/sourceforge/b/bu/bubla/bubla-0.9.1.tar.gz Discoverd By =...

CVE-2006-6809

CVE-2006-6809 covers multiple PHP remote file inclusion vulnerabilities in Vladimir Menshakov buratinable templator (aka bubla) 1.0.0rc2 and earlier. The flaw allows an attacker to trigger arbitrary PHP code execution by supplying a URL in the (1) bu_dir or (2) bu_config[dir] parameter of process...