3 matches found
CVE-2001-1235
CVE-2001-1235 affects PSlash Web Portal (PHP script 0.7 and earlier). Affected component: index.php; vulnerability arises when an HTTP request modifies the includedir variable, allowing a remote attacker to include remote files and execute arbitrary code on the server. Documented impact is remote...
CVE-2007-5014
CVE-2007-5014 concerns pSlash 0.70 with multiple PHP remote file inclusion vulnerabilities. The reported vectors allow an attacker to specify a URL for PHP code execution via (1) lvc_admin_dir in modules/visitors2/admin/view-archiver.inc.php and (2) lvc_include_dir in modules/visitors2/include/me...
CVE-2006-4373
CVE-2006-4373 describes a PHP remote file inclusion in pSlash 0.70. The vulnerability resides in modules/visitors2/include/config.inc.php, where an attacker can cause arbitrary PHP code execution by providing a URL in the lvc_include_dir parameter. This is part of a family of RFI issues for pSlas...