3 matches found
PHP Turbulence 0.0.1 Turbulence.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23580/info PHP Turbulence is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the...
CVE-2007-2503
PHP Turbulence 0.0.1 alpha is affected by a directory-traversal in turbulence.php via GLOBALS[tcore], allowing potential local file inclusion/execution. The issue stems from using a dot-dot path, with a note that a direct request to user/turbulence.php may trigger a fatal error before inclusion. ...
PHP Turbulence 0.0.1 - 'Turbulence.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/23580/info PHP Turbulence is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are...