Multiple directory traversal vulnerabilities in index.php in Tuned Studios (1) Subwoofer, (2) Freeze Theme, (3) Orange Cutout, (4) Lonely Maple, (5) Endless, (6) Classic Theme, and (7) Music Theme webpage templates allow remote attackers to include and execute arbitrary files via ".." sequences in the page parameter. NOTE: this can be leveraged for remote file inclusion when running in some PHP 5 environments.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-01-11T00:00:00

Updated: 2024-08-07T07:39:34.235Z

Reserved: 2008-01-10T00:00:00

Link: CVE-2008-0231

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2008-01-11T00:46:00.000

Modified: 2024-11-21T00:41:27.597

Link: CVE-2008-0231

cve-icon Redhat

No data.