Security Advisory

CVE-2006-0881

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-02-24 11:00:00

Last updated 2024-08-07 16:48:56

Assigner mitre

State PUBLISHED

Description

Multiple PHP remote file include vulnerabilities in gorum/gorumlib.php in Noahs Classifieds 1.3, when register_globals is enabled, allow remote attackers to include arbitrary PHP files via the (1) upperTemplate and (2) lowerTemplate parameters, as demonstrated using the lowerTemplate parameter to index.php.

← Browse all CVEs View on cve.org ↗