3 matches found
Directory traversal
Multiple directory traversal vulnerabilities in Bubbling Library 1.32 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the 1 uri parameter to a yui-menu.tpl.php, b simple.tpl.php, and c advanced.tpl.php in dispatcher/framework/; and the 2 page parameter to d...
CVE-2008-0545
CVE-2008-0545 describes multiple directory traversal vulnerabilities in Bubbling Library 1.32. The issue allows remote attackers to include and execute arbitrary local files via a .. in the uri parameter passed to dispatcher/framework/ templates (yui-menu.tpl.php, simple.tpl.php, advanced.tpl.php...
CVE-2008-0521
CVE-2008-0521 concerns directory traversal in Bubbling Library 1.32. remote attackers can read arbitrary files via a .. in the uri parameter to dispatcher.php under (1) examples/dispatcher/framework/, (2) examples/dispatcher/, (3) examples/wizard/, (4) PHP/, different from CVE-2008-0545. The conn...