PHP Turbulence 0.0.1 Turbulence.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23580/info PHP Turbulence is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the...

CVE-2007-2503

Directory traversal vulnerability in turbulence.php in PHP Turbulence 0.0.1 alpha allows remote attackers to include and execute arbitrary local files via a .. dot dot in the GLOBALStcore parameter. NOTE: this vulnerability is disputed by CVE and a reliable third party because a direct request to...

CVE-2007-2504

PHP remote file inclusion vulnerability in user/turbulence.php in PHP Turbulence 0.0.1 alpha allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALStcore parameter. NOTE: this vulnerability is disputed by CVE and a reliable third party because a direct request to...

CVE-2007-2503

PHP Turbulence 0.0.1 alpha is affected by a directory-traversal in turbulence.php via GLOBALS[tcore], allowing potential local file inclusion/execution. The issue stems from using a dot-dot path, with a note that a direct request to user/turbulence.php may trigger a fatal error before inclusion. ...

CVE-2007-2503

Directory traversal vulnerability in turbulence.php in PHP Turbulence 0.0.1 alpha allows remote attackers to include and execute arbitrary local files via a .. dot dot in the GLOBALStcore parameter. NOTE: this vulnerability is disputed by CVE and a reliable third party because a direct request to...

PT-2007-3828 · Php · Php Turbulence

Name of the Vulnerable Software and Affected Versions: PHP Turbulence version 0.0.1 alpha Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALStcore parameter in the user/turbulence.php file. However, this vulnerability is disputed because a direct...

turbulence-rfi.txt

. . . . | . .| . .;/ || Infos --------- Date : 2007-04-20 Product : turbulence core Version : 0.0.1 alpha Vendor : http://sourceforge.net/projects/turbulence Vendor Status : 2007-04-20 - Not Informed! 2007-04-21 - Vendor Informed! Description : PHP Turbulence is a suite of PHP scripts that work...

PHP Turbulence 0.0.1 - Turbulence.php Remote File Inclusion

PHP Turbulence 0.0.1 - Turbulence.php Remote File Inclusion source: https://www.securityfocus.com/bid/23580/info PHP Turbulence is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise t...

PHP Turbulence 0.0.1 - 'Turbulence.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/23580/info PHP Turbulence is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are...